This content has been marked as final. Show 2 replies
bsa tracks cves if they are provided by the upstream patch vendor. in a windows catalog if you look on your hotfix objects there is a CVE_ID property. if there is a cve for that patch then it should be populated.