Patch Queries and Default Queries
Queries and default queries allow you to create sets of Patches for your convenience.
Patch queries allow the dynamic grouping of patches according to a certain specified criterion. The list is updated over time as new patches that meet the specified condition are released.
System Rules (named Default Queries in the console) are the most widely used system queries that are preset and can't be changed.
|
Important Information Boolean logic-based selection makes the selection of patches very easy and dynamic for Absolute customers. Default Queries are 'built-in' dynamic patch groups that are provided for our customers' convenience. Both Patch Queries and Default Queries can be used when targeting patch deployments. |
Discovery: Patch QueriesDiscovery: Patch Queries
| Query Designer |
Edit your query or create a new one. In Vulnerabilities section go to Queries and click '+New Query'. The Query Designer will open. Find the list of options below. |
 |
Previews query results (does not automatically save the query) |
 |
Exports the query logic |
 |
Saves changes |
 |
Cancels changes since the last time the query was saved |
| Name |
A name of the query |
 |
Checkboxes for Patches or Security scans to return only the specific content |
| Description |
A useful description of the query |
 |
The query is aimed to dynamically group the Top X patches |
 |
Used to add an additional calculation into the query. A new line can be entered anywhere in your query structure. |
 |
Used to remove a specific calculation from the query. Calculations that are part of a group will need to be ungrouped first. |
 |
This is used in conjunction with the grouping feature. If you place the tick of your calculation, you can join them together by using the join button |
 |
This is used to join previously selected lines of your calculation. At least two lines must be selected before this join feature will activate |
 |
When creating your calculation, you may use 'And/Or' logic to enable flexibility where required |
| Field | By default, you may display select patch details to dynamically group patches based on them by pressing the down arrow. |
| Operator | The operator allows specific or multiple selective calculations to be created |
| Value | By default, you may display values from the database by pressing the down arrow or if you know the value you want to search for you may enter it manually |
Discovery: Default Queries (Vulnerabilities)Discovery: Default Queries (Vulnerabilities)
| Name | Description |
|---|---|
| 3rd Party Updates | System rule that shows all 3rd Party Patches |
| All CVSS-rated Misconfigurations | System rule that shows security vulnerabilities with a CVSS greater than 0 |
| All CVSS-rated Patches | System rule that shows all patches with a CVSS score greater than 0 |
| All Security Scans | System rule that shows all security scans |
| All Vulnerabilities | System rule that shows all patches that are detected as needed and ready to install by one or more of your managed devices |
| Approved Security Scripts | List of all currently approved security scripts |
| Critical Patches | System rule that shows all critical patches |
| Critical Security Vulnerabilities | Security vulnerabilities that have a critical severity rating |
| Detected Critical Security Vulnerabilities | System rule that shows all critical security vulnerabilities detected as needed by one or more of your managed devices |
| Detected Patches | System rule that shows all patches that are detected and ready to install |
| Detected Security Issues | List of security issues currently detected on devices |
| Failed Security Remediations | Security remediations that failed to deploy |
| Failed to Deploy Patches | System rule that shows all patches that failed to deploy |
| Flash | System rule that shows all flash patches |
| Java | System rule that shows the latest version of Java Runtime Environment |
| Latest Security Remediations | System rule that shows all security remediations released in the past 30 days |
| Microsoft Patch Tuesday | System rule that shows all Microsoft patches released or updated since the last Patch Tuesday |
| Misconfiguration Approved | System rule that shows misconfiguration vulnerabilities |
| Ready to Resolve Security Issues | List of security issues currently detected on devices |
| Top 10 Patches Ready to Install | System rule that shows the 10 patches with the highest number of detections and readiness for install |
| Top 25 Detected Security Vulnerabilities | System rule that shows the top 25 detected security vulnerabilities |
| Top 5 Critical Vulnerabilities | Lists the top 5 vulnerabilities rated as Critical, based on severity. |
| Weaponized Patches | Shows patches addressing vulnerabilities known to be weaponized or actively exploited in the wild. |