After an internal vulnerability assessment it was found that we were missing several patches on a majority of end points. When checking the end points, we found LANDesk reported them to be fully compliant (clean). As a check we ran windows updates and found up to 12 missing patches. When we run Windows Updates, the patches are downloaded and installed, so it does not seem like these are ghost items.
In checking to see if we had simply turned off scanning for these vulnerabilities, I searched the "All Items" folder for the KB numbers of the missing patches. In every case the patch was not found. I would have assumed that if the patch was superseded or replaced, it would have still shown up on the "All Items" list.
An example of the "missing patches" would be KB2979578, KB2972216, KB2972107. And there are more if anyone needs additional examples.
Why are these vulnerabilities not being found by LANDesk? This is critical as my only other option is to turn on WUS for a period to catch up on all missing patches; which I would rather not do.
LANDesk 9.5 SP2