Unsolved WSUS Admin question

---

Hi Everyone,

I recently took over managing our WSUS server and was curious about one class of security update. These are the security updates that are not associated with MS security bulletins. These unassociated update have an MSRC Severity rating of unspecified, and TechNet defines that as “the issue does not have a severity rating”. Makes sense in a very unhelpful sort of way.

Does that severity mean they are highly unlikely to be exploited and not all that important? I was curious of anyone had better information on how important those updates with the unspecified severity really are?

Thanks,
Art

No definitive answer Art, but I would think of it more as an 'unknown' like they aren't sure of what it can do or how it could be misused, only that the potential exists. Chance are it's probably low, but I would operate as if it were Critical just to be safe.

Personally I would make it a point to patch everything except low within 30-60 days max (depending on security requirements at your company)

Here's MS's official document on the classification system, if you hadn't already reviewed it:
https://technet.microsoft.com/en-us/security/gg309177.aspx