Manually Importing and Publishing CVEs

If you prefer, you can create a scheduled task to automatically publish updates associated with CVEs on a regular basis.

Show Me!

A video tutorial is available on this topic. To access the video, click the following link:

Watch a related video (3:54)


The Common Vulnerabilities and Exposures (CVE) List is a public reference of known cybersecurity vulnerabilities. This list, maintained by the MITRE Corporation (, continually changes as new vulnerabilities are detected. If your organization uses the CVE list, it can be difficult to determine exactly which updates you need to publish to protect your machines from the threats identified in the list.

Fortunately, Patch for Configuration Manager simplifies this process. You use a built-in feature to import a list of CVEs. Patch for Configuration Manager will automatically determine which updates are related to each CVE and it will display those updates for your review. You select which updates you want to publish and then use the normal manual publication process.