Findings
Generator
Configuration
Lucidum Reverse
Architecture
Statistics
← All Findings
Vendor:
Microsoft Defender for Endpoint
FIN-274
Weight:
5
4
3
2
1
Confidence:
High
Medium
Low
Edited:
2026-03-06 09:03
Verified
What It Detects
A device running an end-of-life operating system has a critical-severity vulnerability. EOL operating systems no longer receive security patches from the vendor, meaning this critical vulnerability will never be fixed through normal patching. The combination creates a permanently exploitable system — the vulnerability is severe, and the remediation path (OS patching) is permanently closed. The only options are OS upgrade, compensating controls, or decommissioning.
MITRE ATT&CK Techniques
Comma-separated, e.g. T1078, T1190
Checks
read-only
Field
Operator
Value
osPlatform
in
['Windows7', 'Windows8', 'Windows10', 'WindowsServer2008R2', 'WindowsServer2012R2', 'WindowsServer2016']
vulnerabilitySeverityLevel
equals
Critical
Remediation
×
×
×
×
+ Add item
Why It Matters
×
×
×
+ Add item
Save Changes
Export Lucidum