Posted On: Oct 27, 2020

AWS Systems Manager Patch Manager now includes common vulnerability identifiers (CVE ID) in the description of missing patches identified in your fleet, across multiple Linux platforms. CVE IDs help you identify security notices applicable to vulnerabilities within your fleet and recommended patches. You can use Amazon Inspector to conduct a detailed scan for CVE in your fleet.

Systems Manager Patch Manager will now automatically start showing vulnerability identifiers as part of patch compliance for Amazon Linux, Amazon Linux 2, Oracle, CentOS, RHEL, and SUSE. To get started, view details of a managed instance in Systems Manager Managed Instances and choose the Patch tab.

This feature is available in all AWS Regions where AWS Systems Manager is available, excluding AWS China (Beijing & Ningxia) Regions. For more details, see Patch Manager in the AWS Systems Manager User Guide. To learn more about Systems Manager features, see Systems Manager.

For more information about Amazon Inspector, see Amazon Inspector. Need more details? Check out our user guide and the Getting Started with Amazon Inspector webinar