Can we push the old pending patches on endpoints

Usage and Config Patch
1

Hello team,
I have recently joined an organization and got to know that there are multiple old patches that are not superseded(released in the year 2017, 2019, 2021, etc) are still applicable on endpoints. Below are couple of patches.
Could you please confirm if we can push them now.

Name Source Release Date
Enable hardening changes for WinVerifyTrust Signature Validation Vulnerability (CVE-2013-3900) 21/01/2022
MS21-SEP: Security Update for Office 2016 - Office 2016 - KB4484103 (x64) 14/09/2021
MS18-APR: Security update for Office 2016 - Office 2016 - KB4018319 (x64) 10/04/2018
MS18-JAN: Security update for Office 2016 - Office 2016 - KB4011574 (x64) 09/01/2018
MS17-SEP: Security update for Office 2016 - Office 2016 - KB3213551 (x64) 12/09/2017
MS22-JUL: Security Update for Microsoft Office 2016 - Office 2016 - KB5002112 (x64) 12/07/2022
MS20-OCT: Security update for Office 2016 - Office 2016 - KB4484417 (x64) 13/10/2020
MS15-081: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution - Office 2016 Gold - KB3085538 (x64) 13/10/2015
MS22-AUG: Security Update for Microsoft Office 2016 - Office 2016 - KB4462148 (x64) 09/08/2022
5025885: Manage of the Windows Boot Manager revocations for Secure Boot changes associated with (CVE-2023-24932) - KB5025885 09/05/2023
Disable the HTTP/2 protocol on your web server by using the Registry Editor (CVE-2023-44487) 10/10/2023
MS23-JUL: Security Update for Microsoft Office 2016 - Office 2016 - KB4493154 (x64) 11/07/2023
MS16-099: Security Update for Microsoft Office - OneNote 2016 - KB3115419 (x64) 09/08/2016
Manage Office and Windows HTML Remote Code Execution Vulnerability (CVE-2023-36884) 12/07/2023
Disable the MSDT URL Protocol for Microsoft Support Diagnostic Tool Vulnerability (CVE-2022-30190) 30/05/2022
Enable hardening changes for Windows DCOM Server Security Feature Bypass (CVE-2021-26414) - KB5004442 24/02/2022
5028407: Manage the vulnerability associated with CVE-2023-32019 for Windows 10 Version 21H2 and 22H2 - Windows 10 Version 21H2 and 22H2 - KB5028407 13/06/2023
5028407: Manage the vulnerability associated with CVE-2023-32019 for Windows 11 Version 22H2 - Windows 11 - KB5028407 13/06/2023
MS11-025: Vulnerability in Microsoft Foundation Class (MFC) Library Could Allow Remote Code Execution - Microsoft Visual C++ 2010 Redistributable Package SP1 09/08/2011
MS11-025: Vulnerability in Microsoft Foundation Class (MFC) Library Could Allow Remote Code Execution - Microsoft Visual C++ 2010 Redistributable Package SP1 (x64) 09/08/2011
2

The fixlets themselves should be ok…I’d be more concerned about the overall health of computers that out of date, there are likely other unsupported things installed that may remain vulnerable even after patching

As always, test first, and rollout in a controlled fashion especially as you are less familiar with the environment

3

Actually, the latest patches are deployed every month from the year 2023, but only the very old are left over.
So will push in on test machines and then proceed with the production.
Thank you for the update