Automox Vulnerability Sync enables you to upload reports from a vulnerability scanner and organize vulnerabilities into tasks. A vulnerability scan (a CSV vulnerability report from your preferred vulnerability scanner) must identify CVE IDs (common vulnerability enumerators) and hostnames. When the CSV is successfully synced, Automox creates tasks for each individual CVE. Automox creates a corresponding list of impacted devices based on our internal vulnerability mapping. This task service also shows when hostnames are not found (due to a missing Automox agent), when duplicate hostnames are listed, and when CVEs are uploaded from the CSV file that Automox is not aware of. This can be due to the fact that either we have not yet synced the threat data, or the CVE is associated with a third-party application or a macOS device that Automox does not yet have vulnerability mapping for.
The resulting list of pending tasks is ready for you to review. You can then determine an appropriate time to execute individual tasks, which initiate commands sent to each impacted device.
In addition, you can review real-time task execution statistics including device-level details about success, failure, and other remediation processes/results. Full CSV device reports including error codes are available for download at any time during and after the task execution period. Summaries of execution statistics for individual tasks are also available to review.
- Remediation is currently for Windows and Linux OS only
- The Automox agent must be installed on the devices
- Tasks cannot be deferred
- If devices require a reboot to finish the remediation process, that will not happen automatically
- Notifications and patch deferrals are not available at this time
- A task cannot be stopped after it has been started
- The upload file requirements: CSV format, less than 1 GB in size, must include hostname and CVE number
For further questions, contact our support team at firstname.lastname@example.org.