Resources

/

Podcasts

/

Product Talk

Automated Vulnerability Remediation (AVR)

Episode 03   Published April 2, 2024 13 minute watch

Product Talk

Product Talk, hosted by Peter Pflaster and Steph Rizzuto, takes you inside the Automox platform feature by feature. Recent topics include automated vulnerability remediation, custom roles, third-party patching, the Splashtop-powered Resolve, and integrations with Zendesk and VulnCheck. You'll hear the reasoning behind each release and where endpoint management is heading as it grows more autonomous.

Host

Peter Pflaster

Guest

Steph Rizzuto

RECENT EPISODES

CISA's BOD 26-04 Directive Explained

[Nothing Weaponized, Everything Exposed]

[AI Hits the Hat Trick], Ep. 32

[Emergency Episode: DirtyFrag Exploit Before Patch], Ep. 31

The Math of Modern Attacks

View all episodes

Available wherever you get your podcasts

Youtube

Apple Podcasts

Spotify

Overcast

Pocket Casts

Amazon Music

Castro

Goodpods

Castbox

Podcast Addict

Player FM

Deezer

Summary

Peter Pflaster and Steph Rizzuto from the Automox product team walk through automated vulnerability remediation (AVR), the capability Automox built in 2022 and launched at RSA to replace the spreadsheets of CVE scan data IT teams were getting from security. AVR ingests Rapid7 scan results, correlates each vulnerability to a patch, and for anything that can't be patched it surfaces Rapid7 fix details tied to a worklet. Rizzuto covers the April improvements, supersedence data and tighter Windows OS coverage. She also covers the longer-term vision of AVR as a policy, where you set a risk profile and matching vulnerabilities patch automatically.

Takeaways

  1. Automox built AVR in 2022 to replace the spreadsheets of CVE scan data that IT teams were receiving from their security counterparts, and launched it at RSA that year.

  2. AVR integrates with Rapid7, ingests scan data, correlates each vulnerability to a patch, and deploys those patches out to endpoints.

  3. For vulnerabilities that can't be patched, AVR surfaces step-by-step Rapid7 solution details and ties them to a worklet, an automated PowerShell or Bash script for Windows, Mac, or Linux.

  4. Non-Rapid7 users can use Vulnerability Sync, which uploads a CSV of scan data from Tenable.io, CrowdStrike Spotlight, or Qualys and runs the same patch and worklet correlation, with APIs exposed to automate it.

  5. The long-term goal is AVR as a policy: you define the risk profile you're comfortable with, and matching vulnerabilities patch automatically through existing patch policies with end user and reboot notifications and scheduling.

Topics

Patching & Endpoint Mgmt

See for yourself how policy-driven IT Automation saves time and eliminates risk.

Dive deeper into this topic

From Click to Fix: Bringing Automox Actions to...

Podcast

Automated Patching Solutions Compared: 2026...

Compare automated patching solutions for 2026. Find the best...

Black background with white text "AUTONOMOUS IT LIVE" in green circle and rectangle, and smaller text "FROM AUTOMOX" beneath.
AI, Humans, and the Hybrid Reality of IT in 2026

Blog

How To Build a Patch Compliance Dashboard That...

The power of IT automation is useless if you can’t prove to...