Remediating vulnerable apps
MaaS360 allows you to remediate app vulnerabilities detected in third-party apps by updating or uninstalling them from devices. Additionally, you can send notifications to devices about app vulnerabilities and the remediation actions performed by administrators.
Remediating vulnerable apps from the Application Security wigdet
Follow these steps to remediate vulnerable apps from the Application Security widget:
- Go to .
- Click View details on the Application security
widget.
The Vulnerable apps page is displayed. You can remediate vulnerable apps in the following ways:
- Remediate from the Vulnerabilities widget
You can identify the apps that are affected by a CVE and go to the affected devices and perform remediation action at the device level.
- Click the View all vulnerabilities link on the
Vulnerabilities widget.
The Vulnerabilities page is displayed and lists the vulnerabilities in the third-party apps installed on devices in an organization.
- Click the CVE that you want to remediate.
MaaS360 displays the vulnerability details and list of affected apps in a slide-over window.
Note: If multiple apps are affected by a CVE, MaaS360 displays the vulnerability details and a list of affected apps in a slide-over window. If only a single app is affected by a CVE, MaaS360 displays the vulnerability details and a list of affected devices in a slide-over window. - Click the app name for which you want to perform remediation.
MaaS360 displays the app details, vulnerability details, and list of affected devices in a slide-over window.
- Click the Update all to latest version drop-down list in the
Affected devices section and select one of the following options:
- Update all to latest version: Updates the vulnerable app on all affected devices to the latest version. You can send an email notification to inform users about app vulnerabilities and the app being updated to the latest version.
- Uninstall from all devices: Uninstalls the vulnerable app from all affected devices. You can send an email notification to inform users about app vulnerabilities and the app being uninstalled from the devices.
- Notify all devices: Send notifications to devices about app vulnerabilities. The device notifications can be viewed from the MaaS360 Messages app on the affected devices.
Note:- You can customize the email and device notifications based on your requirements.
- You can perform this remediation action on single, multiple, or all devices.
- (Optional) Click on the Actions Log icon displayed at the top of the slide-over window to track the status of the remediation actions. For more information, see Tracking the status of security actions.
Step result: Performing remediation actions, like updating or uninstalling vulnerable apps on devices in an organization, reduces the number of risk incidents generated against those devices and users. MaaS360 re-evaluates and validates these risk incidents against the configured risk rule, thereby lowering the overall risk score and enhancing device and user security, and maintaining a secure app environment in an organization.
- Click the View all vulnerabilities link on the
Vulnerabilities widget.
- Remediate from the list of vulnerable apps
You have the option to identify vulnerabilities affecting different versions of an app and take remediation action at the version level. Alternatively, you can go to the list of devices affected by vulnerabilities in a specific app version and perform remediation actions at the device level.
- Click the app name from the list of vulnerabilities displayed on the Application
security page to perform remediation.
MaaS360 displays the app details, security assessment, and lists the different versions affected by app vulnerabilities in a slide-over window.
- Fixing app vulnerabilities at the version level
- Click the Update all to latest version drop-down list in the
Version detected section in the slide-over window and select one of the
following options:
- Update all to latest version: Updates the vulnerable app on all affected devices to the latest version. You can send an email notification to inform users about app vulnerabilities and the app being updated to the latest version.
- Uninstall from all devices: Uninstalls the vulnerable app from all affected devices. You can send an email notification to inform users about app vulnerabilities and the app being uninstalled from the devices.
- Notify all devices: Sends notifications to devices about app vulnerabilities. The device notifications can be viewed from the MaaS360 Messages app on the affected devices.
Note:- You can customize email and device notifications based on your requirements.
- You can perform this remediation action on single, multiple, or all versions of an app.
- Click the Update all to latest version drop-down list in the
Version detected section in the slide-over window and select one of the
following options:
- Fixing app vulnerabilities at the device level
- Click the required version in the Version detected section in the
slide-over window.
MaaS360 displays the CVE and vulnerability details for the selected version in a slide-over window. It also lists the devices that are affected by the selected version.
- Click the Update all to latest version drop-down list in the slide-over
window and select one of the following options:
- Update all to latest version: Updates the vulnerable app on all affected devices to the latest version. You can send an email notification to inform users about app vulnerabilities and the app being updated to the latest version.
- Uninstall from all devices: Uninstalls the vulnerable app from all affected devices. You can send an email notification to inform users about app vulnerabilities and the app being uninstalled from the devices.
- Notify all devices: Send notifications to devices about app vulnerabilities. The device notifications can be viewed from the MaaS360 Messages app on the affected devices.
Note:- You can customize the email and device notifications based on your requirements.
- You can perform this remediation action on single, multiple, or all devices.
- Click the required version in the Version detected section in the
slide-over window.
- Fixing app vulnerabilities at the version level
- (Optional) After performing remediation actions, the Remediation in progress tag is displayed below the version number. Hover over the tag to view the remediation actions performed on devices.
- (Optional) Click on the Actions Log icon displayed at the top of the slide-over window to track the status of the remediation actions. For more information, see Tracking the status of security actions.
Step result: Performing remediation actions, like updating or uninstalling vulnerable apps on devices in an organization, reduces the number of risk incidents generated against those devices and users. MaaS360 re-evaluates and validates these risk incidents against the configured risk rule, thereby lowering the overall risk score and enhancing device and user security, and maintaining a secure app environment in an organization.
- Click the app name from the list of vulnerabilities displayed on the Application
security page to perform remediation.
- Remediate from the Vulnerabilities widget
Remediating vulnerable apps from the Risk Incidents widget
Follow these steps to remediate app vulnerabilities from the Risk Incidents widget:
- Go to the Affected devices section from the Risk incidents widget in the
Security dashboard. For information on navigation, see Risk incidents widget.
You can view details of the following devices by clicking on the required tab.
- User's devices: Lists the security assessment for the user's devices that are impacted by the vulnerable app.
- All devices: Lists the security assessment for all the devices in an organization that are impacted by the vulnerable app.
- Click the Update all to latest version drop-down list in the slide-over
window and select one of the following options:
- Update all to latest version: Updates the vulnerable app on all affected devices to the latest version. You can send an email notification to inform users about app vulnerabilities and the app being updated to the latest version.
- Uninstall from all devices: Uninstalls the vulnerable app from all the affected devices. You can send an email notification to inform users about app vulnerabilities and the app being uninstalled from the devices.
- Notify all devices: Send notifications to devices about app vulnerabilities. The device notifications are displayed in the MaaS360 Messages app on the affected devices.
Note:- You can customize the email and device notifications based on your requirements.
- You can perform this remediation action on single, multiple, or all devices.
Step result: Performing remediation actions, like updating or uninstalling vulnerable apps on devices in an organization, reduces the number of risk incidents generated against those devices and users. MaaS360 re-evaluates and validates these risk incidents against the configured risk rule, thereby lowering the overall risk score and enhancing device and user security, and maintaining a secure app environment in an organization.