{"id":12381,"date":"2025-07-29T04:06:39","date_gmt":"2025-07-28T19:06:39","guid":{"rendered":"https:\/\/m365jp.net\/?p=12381"},"modified":"2025-07-29T04:15:32","modified_gmt":"2025-07-28T19:15:32","slug":"servicerestored-dz1120621-microsoft-defender-xdr-admins-may-receive-false-positive-indications-in-microsoft-defender-vulnerability-management-for-a-specific-app","status":"publish","type":"post","link":"https:\/\/m365jp.net\/index.php\/2025-07-29-servicerestored-dz1120621-microsoft-defender-xdr-admins-may-receive-false-positive-indications-in-microsoft-defender-vulnerability-management-for-a-specific-app","title":{"rendered":"[serviceRestored] DZ1120621 | Microsoft Defender XDR | Admins may receive false positive indications in Microsoft Defender vulnerability management for a specific app"},"content":{"rendered":"<div class=\"postie-post\">\n<div>\n<hr>\n<table id=\"section\">\n<tbody>\n<tr>\n<th width=\"95%\">DZ1120621 | Microsoft Defender XDR | Admins may receive false positive indications in Microsoft Defender vulnerability management for a specific app<\/th>\n<\/tr>\n<\/tbody>\n<\/table>\n<hr>\n<table id=\"data\">\n<tbody>\n<tr>\n<th>Status<\/th>\n<td class=\"bad\">serviceRestored<\/td>\n<\/tr>\n<tr>\n<th>Classification<\/th>\n<td>advisory<\/td>\n<\/tr>\n<tr>\n<th>User Impact<\/th>\n<td>Admins may have received false positive indications in Microsoft Defender vulnerability management for a specific app.<\/td>\n<\/tr>\n<tr>\n<th>Last Updated<\/th>\n<td>07\/28\/2025 18:22:49<\/td>\n<\/tr>\n<tr>\n<th>Start Time<\/th>\n<td>07\/14\/2025 04:00:00<\/td>\n<\/tr>\n<tr>\n<th>End Time<\/th>\n<td>07\/26\/2025 20:00:00<\/td>\n<\/tr>\n<tr>\n<th>Latest Message<\/th>\n<td>Title: Admins may receive false positive indications in Microsoft Defender vulnerability management for a specific app<\/p>\n<p>  User impact: Admins may have received false positive indications in Microsoft Defender vulnerability management for a specific app.<\/p>\n<p>  Final status: Our testing has confirmed that the deployment of the fix completed more quickly than our monitoring previously indicated. We&#8217;ve subsequently monitored our service health telemetry to confirm that the fix has successfully eliminated the false positive   indications and impact is remediated.<\/p>\n<p>  Scope of impact: Some admins expecting to receive indications of vulnerabilities in Microsoft Defender for Endpoint for devices with a specific app may have been impacted.<\/p>\n<p>  Start time: Monday, July 14, 2025, at 4:00 AM UTC<\/p>\n<p>  End time: Saturday, July 26, 2025, at 8:00 AM UTC<\/p>\n<p>  Root cause: A configuration error in our detection model resulted in Acrobat Reader executables being marked falsely as Acrobat Reader DC, which resulted in admins receiving false-positive vulnerability indications.<\/p>\n<p>  Next steps: <br \/>  &#8211; We&#8217;re continuing our investigation into the configuration error that led to impact to determine precisely what went wrong and reinforce our services against similar future issues.<\/p>\n<p>  This is the final update for the event.<\/td>\n<\/tr>\n<tr>\n<th>Machine Translation<\/th>\n<td>\u30bf\u30a4\u30c8\u30eb: \u7ba1\u7406\u8005\u306f\u3001\u7279\u5b9a\u306e\u30a2\u30d7\u30ea\u306eMicrosoft Defender\u8106\u5f31\u6027\u7ba1\u7406\u3067\u8aa4\u691c\u77e5\u306e\u5146\u5019\u3092\u53d7\u3051\u53d6\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059<\/p>\n<p>  \u30e6\u30fc\u30b6\u30fc\u3078\u306e\u5f71\u97ff: \u7ba1\u7406\u8005\u306f\u3001\u7279\u5b9a\u306e\u30a2\u30d7\u30ea\u306eMicrosoft Defender\u8106\u5f31\u6027\u7ba1\u7406\u3067\u8aa4\u691c\u77e5\u306e\u5146\u5019\u3092\u53d7\u3051\u53d6\u3063\u305f\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n<p>  \u6700\u7d42\u30b9\u30c6\u30fc\u30bf\u30b9: \u30c6\u30b9\u30c8\u3067\u306f\u3001\u4fee\u6b63\u30d7\u30ed\u30b0\u30e9\u30e0\u306e\u30c7\u30d7\u30ed\u30a4\u304c\u3001\u4ee5\u524d\u306e\u76e3\u8996\u3067\u793a\u3055\u308c\u305f\u3088\u308a\u3082\u65e9\u304f\u5b8c\u4e86\u3057\u305f\u3053\u3068\u304c\u78ba\u8a8d\u3055\u308c\u307e\u3057\u305f\u3002\u305d\u306e\u5f8c\u3001\u30b5\u30fc\u30d3\u30b9\u6b63\u5e38\u6027\u30c6\u30ec\u30e1\u30c8\u30ea\u3092\u76e3\u8996\u3057\u3066\u3001\u4fee\u6b63\u30d7\u30ed\u30b0\u30e9\u30e0\u306b\u3088\u3063\u3066\u8aa4\u691c\u77e5\u306e\u5146\u5019\u304c\u6b63\u5e38\u306b\u6392\u9664\u3055\u308c\u3001\u5f71\u97ff\u304c\u4fee\u5fa9\u3055\u308c\u305f\u3053\u3068\u3092\u78ba\u8a8d\u3057\u307e\u3057\u305f\u3002<\/p>\n<p>  \u5f71\u97ff\u306e\u7bc4\u56f2: \u7279\u5b9a\u306e\u30a2\u30d7\u30ea\u3092\u642d\u8f09\u3057\u305f\u30c7\u30d0\u30a4\u30b9\u7528\u306eMicrosoft Defender for Endpoint\u306e\u8106\u5f31\u6027\u306e\u5146\u5019\u3092\u53d7\u3051\u53d6\u308b\u3053\u3068\u3092\u671f\u5f85\u3057\u3066\u3044\u308b\u4e00\u90e8\u306e\u7ba1\u7406\u8005\u306f\u3001\u5f71\u97ff\u3092\u53d7\u3051\u3066\u3044\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n<p>  \u958b\u59cb\u6642\u9593: 14 \u5e74 2025 \u6708 4 \u65e5\u6708\u66dc\u65e5\u5348\u524d 00 \u6642 UTC<\/p>\n<p>  \u7d42\u4e86\u6642\u523b: 2025 \u5e74 7 \u6708 26 \u65e5\u571f\u66dc\u65e5\u3001\u5348\u524d 8:00 UTC<\/p>\n<p>  \u6839\u672c\u539f\u56e0:\u691c\u51fa\u30e2\u30c7\u30eb\u306e\u8a2d\u5b9a\u30a8\u30e9\u30fc\u306b\u3088\u308a\u3001Acrobat Reader \u5b9f\u884c\u53ef\u80fd\u30d5\u30a1\u30a4\u30eb\u304c\u8aa4\u3063\u3066 Acrobat Reader DC \u3068\u3057\u3066\u30de\u30fc\u30af\u3055\u308c\u3001\u7ba1\u7406\u8005\u304c\u8aa4\u691c\u77e5\u306e\u8106\u5f31\u6027\u306e\u5146\u5019\u3092\u53d7\u3051\u53d6\u308b\u3088\u3046\u306b\u306a\u308a\u307e\u3057\u305f\u3002<\/p>\n<p>  \u6b21\u306e\u30b9\u30c6\u30c3\u30d7:<br \/>  &#8211; \u5f71\u97ff\u306b\u3064\u306a\u304c\u3063\u305f\u69cb\u6210\u30a8\u30e9\u30fc\u306e\u8abf\u67fb\u3092\u7d99\u7d9a\u3057\u3001\u4f55\u304c\u554f\u984c\u3060\u3063\u305f\u306e\u304b\u3092\u6b63\u78ba\u306b\u7279\u5b9a\u3057\u3001\u5c06\u6765\u306e\u540c\u69d8\u306e\u554f\u984c\u306b\u5bfe\u3057\u3066\u30b5\u30fc\u30d3\u30b9\u3092\u5f37\u5316\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>  \u30a4\u30d9\u30f3\u30c8\u306e\u6700\u7d42\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u3067\u3059\u3002<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>DZ1120621 | Microsoft Defender XDR | Admins may receive false positive indications in Microsoft Defender vulne [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-12381","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/12381","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/comments?post=12381"}],"version-history":[{"count":0,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/12381\/revisions"}],"wp:attachment":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/media?parent=12381"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/categories?post=12381"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/tags?post=12381"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}