Hey everyone! I was wondering if anyone else has encountered C++ vulnerabilities showing up on Defender and Azure Defender for Cloud recently. It's been a bit of a hassle, and I'd love to hear your experiences or solutions.
2 Answers
I've dealt with this type of issue before, although not with Defender specifically. In the past, I used Qualys, and sometimes it would leave behind remnants in the registry. That might be why you’re seeing false positives. If you want to clean it up, try running this command for any old versions (just note that x86 and x64 versions are different):
"C:ProgramDataPackage Cache{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}VC redist.x64.exe" /uninstall /quiet /norestart
It usually doesn't affect most users, but I had one funny situation where a user kept reinstalling it with an old installer they had, thinking it was the latest version!
Yeah, I saw those pop up too. I spent about an hour yesterday updating vulnerable versions and removing anything that was outdated. It’s definitely challenging to keep things secure!
I tried removing one of the problematic versions yesterday and waited for the daily scan from MS. Unfortunately, it still seems like it didn’t do the trick.
That's great advice! I’ll definitely check that out. Thanks for sharing!