Accessing the Central Vulnerability Manager

1. Log in to your MSP Portal within CYRISMA at msp.cyrisma.com
2. On the top navigation panel, select Central Vulnerability Manager at the top.

Key Features

Unified Vulnerability Visibility

• Aggregates vulnerability data from all your customer instances.
• Provides detailed insight into both third-party and Windows patch vulnerabilities.
• Shows a real-time snapshot of affected workstations and servers across your entire client base.

Centralized Patch Management

• Quickly identify vulnerabilities across all customer devices.
• Deploy patches directly from the central dashboard without needing to individually manage each customer instance.
• Roll out mass patches with ease by selecting all instances or choosing specific client environments.

Granular CVE Analysis

• Easily view detailed CVE information including severity, exploitability, and a clear description of each vulnerability.
• Filter vulnerabilities by severity and exploitability to prioritize the most critical threats.
• Quickly identify impacted devices per client, enabling targeted remediation.

Patch History

Viewing Patch History

Click the Patch History button to open the detailed patch record.

Patch Details and Results

Within the patch history for a specific customer you will find:

Target Device: The endpoint or server being patched.

Agent: The assigned agent responsible for the patch.

Patch Software: Identifies the specific software or update (e.g., Windows KB Article, Mozilla Firefox).

Result: The outcome of the patch deployment, such as:

Installation Success: Reboot Scheduled

Patch Failed

Patch Successful

Patch By: The name of the administrator or security professional who performed the patch.

Patch Time: The exact timestamp when the patch was executed.

Patch Status and Filtering

The patch history table allows for filtering and searching specific patch results. You can filter by:

Patch Software (e.g., Windows KB Article, Mozilla Firefox)

Result Status (Success, Failure)

Patch By (Administrator or Security Professional)

Patch Time (Date and Time of Patch Execution)

This functionality helps MSPs identify failed patches or pending reboots for faster troubleshooting and resolution.

Exporting Patch History

The Export to CSV option enables exporting the complete patch history for record-keeping and reporting. This is particularly useful for compliance audits and internal reviews.

Frequently Asked Questions (FAQs)

Q: Can I suppress vulnerabilities from the centralized dashboard?
A: Currently, vulnerability suppression still needs to be managed within individual customer instances. Future updates are planned to add centralized suppression capabilities.

Q: Are Mac devices supported in patch deployment?
A: Mac device patching is not currently supported but will be included in an upcoming release alongside Linux patches.

Best Practices and Tips

• Use the Central Vulnerability Manager to quickly roll out patches across your entire client base, particularly when addressing critical or high-risk vulnerabilities.
• Leverage CVE filtering capabilities to prioritize vulnerabilities by severity and exploitability, ensuring rapid response to the most significant threats.
• Regularly review and export vulnerability data for accurate reporting and compliance management.