GPO Support in vulnerability remediation

Hello Guys,

Today, I have another learning to mass vulnerability remediation without any service impact with less effort.

For deploying this you need to test your remediation solution over all phases like:- NON-prod, Prod or field environment (few assets for testing purpose)

Benefits:-

• You do not need to worry about that vulnerability for which you have applied a remediation solution by GPO Like:- Chrome/Edge/firefox (upgrading browser)
• You do not need to make an effort for the assets you plan to introduce soon.
• Reduce your time, make you more productive and you can look over new initiatives in VMDR
• You do not need to pay attention to the vulnerability that will come with that specific reason.
• GPO shares one solution in the whole domain by one action.

The best vulnerability that you can choose:-

1. Vulnerabilities for which you have remediation solutions by registry changes like:- TLS, winverify(M13-098), spector-meltdown, etc
2. Vulnerability resolved by upgrading applications like:- non-business applications (browsers and monitoring agents)

You can contact your support team or operations team to understand your environment structure

TO BE CONTINUED

Let’s meet in another story with new findings in vulnerability remediations.

If you have any questions, do a DM.