Question: When a patch is rejected, why does it still show under Software Management > Vulnerabilities?
Answer: When the agent is scanned for patches, it reports the rejected patch as missing. Per design, the patch shows under the Vulnerabilities page. However, since the policy is rejecting the patch, it will not be installed. Kaseya recommends utilizing the suppression option for vulnerabilities you wish not to deploy and reflect on your endpoint vulnerability count. Suppression ensures any suppressed vulnerabilities will not display in dashboard/reporting metrics.