Apps

  • Updated on May 29, 2025
  • 3 minute(s) read
Prev Next
ControlUp Academy training video

Click here to watch our Academy training video about the Apps tab.

The Apps dashboard shows application/OS patches, and SaaS applications. To view SaaS applications, you must set up the User Risk Analytics feature.

App and OS patches column descriptions

The Apps grid shows a list of all applications and OS versions that have at least one issue, including the following columns:

  • App Name. The name of the application or Operating System version.
  • Category. The type of issue with the app. There are four categories:
    • Outdated Version - A patch is available for the app, but there are no CVEs associated with the patch. Note that app patches with no associated CVEs do not contribute to a device's score.
    • Security - A patch is available for the app, and there are CVEs associated with the patch.
    • OS - A operating system patch is available.
    • End Of Life - The application is no longer receiving any updates.
  • Platform. The OS platform where the issue was detected.
  • Versions. The number of different versions of the application installed on your devices that are outdated.
  • Vendor. The name of the app's vendor.
  • Score. The level of security risk caused by the app. See Application score and severity below for details.
  • Severity. The severity of the application's issues. See Application score and severity below for details.
  • CVEs. The number of Common Vulnerabilities and Exposures (CVEs) identified for the application.
  • Remediation Status. Whether a remediation is available for the application's issues. If a remediation is available, you can manually perform an action to remediate it. Read Manually Scan Devices and Remediate Issues for details.
  • Usage. The percentage of your devices running the application out of the total number of devices with the application installed.
  • Installed on. The number of devices with the application installed.
  • Devices. How many devices are affected by the issue and need to be updated. The red portion of the bar shows the number of devices that still have the issue and have not yet been remediated. The green portion shows the number of devices that had the issue but have been remediated so that the issue no longer exists.
  • Install Type. If the install type is "Auto", then ControlUp can automatically remediate the issue and update the application. If the install type is "Manual", then you must manually update the application. You can click on the application name and see a link to the latest version of the application in the Latest Version field.

SaaS apps column descriptions

  • App Name - The name of the application
  • Categories - The application's categories.
  • Auth - The authentication method used to access the application.
  • Last Login - The last time any user accessed the application
  • Users - The number of users who have accessed the application. You can click on the number of users to see more information about those users.
  • Certifications - A list of regulatory certifications identified for the application. Only the following certifications are considered:
    • SOC 1
    • SOC 2
    • SOC 2
    • MTCS Level 3
    • IRAP
    • HIPAA
    • ISO 27001
    • FIPS 140-2
    • PCI DSS
    • FedRamp
  • Certification Strength - The strength of the application's regulatory certifications, based on the number of certifications listed in the Certifications column.
    • None - No certifications.
    • Fair - 1 certification.
    • Good - 2 or more certifications.

Application score and severity

Every application gets a score to help you identify applications with a high security risk. The application score is based on:

  • The number of different affected versions of the application.
  • The number of devices that have the application installed.
  • The Severity of the application's issue.

Drill down to a specific application or OS version

Click on an application or OS version from the Apps grid to see detailed information about the app, including:

  • The number of devices using different versions of the app.
  • The status of remediation actions performed to patch the app.
  • A list of the devices requiring the patch. Click on a device to drill down into the details for that device, where you can see the location of the application in the Path to executable
    column.
  • A list of CVEs affecting the app.
  • A list of the different versions in the app and how many devices are running each version