![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 67%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETB%3C/text%3E%3C/svg%3E)
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
255 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 28.000000000000004%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECK%3C/text%3E%3C/svg%3E)
Hi @Tom Burton
I acknowledge that even after remediating the CVEs in your environment, this alert still appears and indicates two devices as exposed. Additionally, they are actually missing from the vulnerability page.
This appears to be misleading or incomplete information and documented here - https://learn.microsoft.com/en-us/defender-vulnerability-management/tvm-weaknesses#report-inaccuracy.
If you still have access to the vulnerability details, go ahead and report this inaccuracy.
That being said, I have escalated this to PG and will update if this is a service issue.
If you find the answer above helpful, please Accept the answer to help anyone in the community who might have a similar question to quickly find the solution.