Workforce Identity
Endpoint Management
Endpoint Detection & Response
Vulnerability Management
Compliance Automation
Trust Center
Vulnerability Management now supports auto remediation of CVEs for apps on macOS, when an update for the app is available from the Auto App catalog.
With the new Vulnerability Response Library Item, you can define remediation rules (Enforce update upon detection, Enforce update on a timeframe, or no action) based on CVE severity (Critical, High, Medium, Low).
When the Kandji Agent detects a vulnerable app with a known CVE, it can automatically trigger an update based on the vulnerability response rules you configure, while respecting configured exceptions for apps you don’t want auto-remediated.
Vulnerability remediation responses apply to any app with a matching app in the Auto App catalog.
For more information, see our support article.
