VMDR Release 2.6
August 25, 2025
UI Changes on Vulnerabilities Listing and TruRisk™ Score Details Pages
The changes have been implemented on the Vulnerability Listing and TruRisk™ Score Details pages to maintain UI consistency and enhance the user experience.
The following table lists the details from the Vulnerabilities Listing Page. The same changes have also been applied to the TruRisk™ Score Details page.
| Change Type | Description |
| New Action: View Risk Elimination |
View Risk Elimination action is now available for both single and bulk QID operations. This action redirects users to the Patch Management Application, providing multiple remediation options for selected QIDs. This replaces the previous "Patch Now" action with expanded remediation capabilities.
Patch Management subscription required. |
| Status Indicators |
We have added visual indicators to help you easily see the status of vulnerabilities, indicating whether they are mitigated or partially mitigated. Plus, we have added an info icon (i) that you can click to open a detailed pop-up with all the information you need about the CVEs that have been addressed.
|
| Mitigation and Remediation Count |
You can now view the mitigation and remediation counts right on the Vulnerabilities Listing page. Click on the count to open the Elimination Details window, where you can take action on any vulnerabilities found in your environment.
|
UI Changes on VMDR Prioritization
The following changes have been implemented in the Reports and Schedules sub-sections in VMDR Prioritization to maintain UI consistency and enhance the user experience.
| Change Type | Description |
| New Action Column |
We have added a new Action column with a download icon for each scheduled report row, allowing you to download the latest scheduled reports directly from the Schedules page.
|
| New Type Column |
We have added a new 'Type' column to the Reports page to distinguish between scheduled and on-demand reports.
|
Partial Token Removal
The vulnerabilities.vulnerability.description token has been removed from the Alerting page, as it was not in active use. It remains available on the Vulnerabilities page.
Issues Addressed
The following reported and notable customer issues are fixed in this release.
| Category/Component | Issue |
| Threat Intelligence | We have fixed an issue where the riskiest asset distribution by geo-location was pointing to the wrong location. |
| Patch Superseded Filter | Updated documentation for the Patch Superseded filter (located under Excluded Vulnerabilities in the Vulnerabilities tab) to include a complete list of patch supersessions. This clarifies that the filter applies beyond Microsoft Detections, as previously indicated in earlier release notes. |
| Search Token | We have addressed an incorrect example in the vulnerabilities.lastFound search token description. |