Top 10 devices with the most exploitable vulnerabilities

Query Information

Description

This query lists the 10 devices in your tenant with the most exploitable vulnerabilities.

Defender XDR

let ExploitableVulnerabilities = DeviceTvmSoftwareVulnerabilitiesKB
     | where IsExploitAvailable == 1
     | project CveId;
DeviceTvmSoftwareVulnerabilities
| where CveId in (ExploitableVulnerabilities)
| summarize TotalExploitableVulns = dcount(CveId), ExploitableCVE = make_set(CveId) by DeviceId
| top 10 by TotalExploitableVulns

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Top-Devices-Most-Exploitable-Vulnerabilities.md

Top-Devices-Most-Exploitable-Vulnerabilities.md

Top 10 devices with the most exploitable vulnerabilities

Query Information

Description

Defender XDR

Files

Top-Devices-Most-Exploitable-Vulnerabilities.md

Latest commit

History

Top-Devices-Most-Exploitable-Vulnerabilities.md

File metadata and controls

Top 10 devices with the most exploitable vulnerabilities

Query Information

Description

Defender XDR