@Varma To check if the any patch is installed on a virtual machine, you can use the following steps:
- Connect to the virtual machine using Remote Desktop or another remote access tool.
- Open the Control Panel and navigate to Programs and Features.
- Click on the "View installed updates" link on the left-hand side of the window.
- Look for the respective patch in the list of installed updates. If it is installed, it will be listed with the other updates.
Also, you can check the list of hotfixes installed by executing Get-HotFix
PowerShell Command. Also, do note that the KB varies based on the operating system. For more information, refer this :https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21412
If you are using Azure Update Manager, you can retrieve the list of uninstalled patches using below query.
patchinstallationresources
| where type has "softwarepatches"
| extend machineName = tostring(split(id, "/", 8)), resourceType = tostring(split(type, "/", 0)), tostring(rgName = split(id, "/", 4)), tostring(RunID = split(id, "/", 10))
| extend prop = parse_json(properties)
| extend lTime = todatetime(prop.lastModifiedDateTime), patchName = tostring(prop.patchName), kbId = tostring(prop.kbId), installationState = tostring(prop.installationState), classifications = tostring(prop.classifications)
| where lTime > ago(7d)
| where kbId == 890830
| project lTime, RunID, machineName, rgName, resourceType, patchName, kbId, classifications, installationState
| sort by RunID