A vulnerability scanner is used at least fortnightly to identify missing patches or updates for vulnerabilities in applications other than office productivity suites, web browsers and their extensions, email clients, PDF software, and security products.
Topic
Scanning for missing patches or updates
Applicable to
all
History
Sep 2023
A vulnerability scanner is used at least fortnightly to identify missing patches or updates for vulnerabilities in applications other than office productivity suites, web browsers and their extensions, email clients, PDF software, and security products.
References to ‘security vulnerabilities’ were replaced with ‘vulnerabilities’.
Jun 2023
A vulnerability scanner is used at least fortnightly to identify missing patches or updates for security vulnerabilities in applications other than office productivity suites, web browsers and their extensions, email clients, PDF software, and security products.
The existing control relating to ‘scanning for missing patches or updates in other applications’ was amended to ‘scanning for missing patches or updates in applications other than office productivity suites, web browsers and their extensions, email clients, PDF software, and security products’ to avoid confusion when the control is read in isolation.