Updating Vulnerability Database

What is the Vulnerability Database ?

The vulnerability or the patch database is a baseline against which the available and missing patches in the machines, are determined. This database is collated by acquiring information from security bulletins/errata from vendor websites and monitoring security e-mail alerts from these vendors. This information is thoroughly analyzed and filled-up with relevant information for vulnerability assessment.

The vulnerability database is finally published in the Central Patch Repository (CPR), from where it is downloaded to the enterprise site on request from the PatchQuest client.

The database is periodically refreshed with latest information and placed in the CPR server. Therefore, it is best advised to download the database periodically in order to be in sync with the latest patch related information.

What does the Vulnerability Database comprise of ?

The vulnerability database contains detailed information about product-specific security hotfixes and other updates, including :

• files in each hotfix package and their file versions and checksums

• registry keys that were applied by the hotfix installation package (in case of Windows OS and applications)

• information about which patches supersede which other patches

• patch download URLs

When should it be updated ? 

The vulnerability database has to be updated as the first step, after starting the PatchQuest server and logging in to the web interface - using the 'Update vulnerability database from web' link in the Home page. Subsequent update intervals can also be scheduled.

Viewing vulnerability database update-status

You can determine if the vulnerability database is up-to-date with the latest information or not, from the Home tab. The table named 'Updates!' in the top of the left panel displays the current vulnerability database update-status.

Note that you will need internet access from the system in which the PatchQuest server is installed, to see the status here. If the vulnerability database status shows up as 'not updated' (red icon), click on the 'Update Now' link to proceed with updating the database.

Updating the database immediately

From the web interface of PatchQuest, click on the 'Update vulnerability database from web' link from the 'Quick Links' section in the Home tab. A pop-up window appears with information on the database update progress from the Central Repository Server in AdventNet's site. You can close the window once the update is complete and proceed with other operations.

Alternatively, visit the Settings tab » Vulnerability Database Update Interval. Click on the 'Update Vulnerability Now' option to trigger immediate vulnerability database update. 

Configuring Vulnerability Database Update Interval

Visit the Settings tab » Vulnerability Database Update Interval. The table in this screen lists the schedules, if any, made for updating the database at different intervals. From this table, you can 'Delete' a particular schedule or change the enable/disable status of an already set schedule. Follow these steps to schedule at a later time or periodically.

• Click the 'Add Schedule' button to bring up the configuration screen to include a new update schedule.
  
• Enter a Schedule Name (can be any relevant text). Choose from the different schedule options available for database update : 

• Hourly update

• Update once at a particular time

• Daily update

• Weekly update

• Monthly update

• Select the Start Time and the Start Date and the other available options

• Click on the Submit button to complete the configuration

• This configuration gets listed in the Schedule Table in the previous screen