Eliminate known vulnerabilities, keep systems up-to-date, and always be current.

Shavlik Patch® for Microsoft System Center adds non-Microsoft third-party patch to Microsoft System Center Configuration Manager (SCCM) to maximize your investment in System Center and to reduce risks from unpatched third-party applications. 



Beyond OS patching
Maximize your investment
Reduce IT time

Go beyond OS patching to reduce application security risks

"We could bring third-party applications into our existing SCCM infrastructure for a relatively low cost."

- Anthony Digregorio, University of Pittsburgh

Avoid being the next security disaster headline by reducing vulnerabilities and risks with OS and third-party application patching.

1. Increase security to reduce downtime - 75% of attacks use publicly known vulnerabilities in commercial software that could be prevented by regular patching. Shavlik Patch increases your security by expanding Microsoft System Center Configuration Manager's (SCCM) patching capabilities.

2. Close the application patching gap - Applications now represent a greater risk to the network beyond the OS. Shavlik Patch reduces the risk by adding non-Microsoft, third-party patching to SCCM.

3. Patch hundreds of vulnerable applications –Shavlik Patch supports many of the most popular applications including Adobe (Flash), Apple (iTunes), Java, and many more.

4. Gain control of application updates - Don't rely on end-users to patch individual applications. With Shavlik Patch, centrally deploy application patches in SCCM.

Maximize your Microsoft System Center investment

Get more from your IT dollar by expanding patching capabilities of Microsoft System Center Configuration Manager to cover application updates.

1. Expand Microsoft System Center Configuration Manager (SCCM) to include application patching – Patch from within SCCM many of the most vulnerable applications not supported by Microsoft. No additional management platforms are needed.

2. Integrate into the SCCM console - Shavlik Patch includes an intuitive plugin that integrates into the SCCM console to download, deploy, and configure application updates.  This plugin gives you quick reporting features as well as a complete view of patching progress.

3. Leverage existing SCCM workflows - Be immediately productive with the Shavlik Patch plugin for SCCM that allows IT admins to eliminate manual steps to create and deploy third-party application patches to workstations and servers.

4. Decrease vulnerability-to-patch window - Shavlik Patch releases patch information weekly, and patches to zero-day threats are typically released the same day.

Significantly reduce IT effort and cost in deploying and managing application updates

Get more from your IT dollar by expanding patching capabilities of Microsoft System Center Configuration Manager to cover application updates.

1. Accelerate patching from months to minutes – As more applications are added to the environment, IT administrators spend more and more time just keeping systems up-to-date. Shavlik Patch greatly reduces release-to-installation-time.

2. Patch with confidence –Shavlik's years in the patching business means that you will get the most accurate pre-tested patching data for application updating directly from Shavlik.

3. Reduce number of steps used to create updates - Shavlik Patch automates and consolidates patch management workflows by leveraging existing SCCM patching processes. 

4. No additional consulting required – Shavlik Patch's simplified approach to patching third-party applications within SCCM requires no expensive consultants or additional services.


  • Ability to patch hundreds of the most popular applications
  • Integrated plugin for the SCCM 2012 console
    • View of available patches
    • Select patches to publish and expire
    • Smart filtering of patches based on multiple criteria (vendor, product, etc.)
  • Check for and download new patch data automatically
  • Publish new patches automatically based on smart filter
  • Auto-detect Windows Software Update Server
  • Digital Certificate management
  • Handles difficult to install patches including Java
  • Streamline handling of bundled patches such as Apple

Current list of Shavlik Patch application coverage


Shavlik Patch allows you to manage third-party updates within the System Center Configuration Manager console. Here we see the Shavlik catalog of third-party updates. From this table, users can select the updates they wish to publish.

Updates can be published manually or automatically, scheduled, and filtered down to certain vendors or certain products.

After third-party updates have been published, they are deployed in an identical manner as Microsoft updates.


  • Microsoft System Center Configuration Manager 2012 Console (Gold, SP1, and R2)
    • Operating System
    • Windows 2008 R2 SP1 or later
    • Windows Server 2012 or later
    • Windows 7 SP1 or later (RT not supported)
    • Windows Software Update Services (WSUS)
  • On Windows 2008 R2 SP1 and Windows 7 SP1 or later - WSUS 3.0 SP2 or WSUS 3.0 SP2 Administration Console
  • On Windows Server 2012 and Windows 8 or later - Enable the role "Windows Software Update Services" or enable the feature "Role Administration Tools>Windows Software Update Services>API and PowerShell cmdlets"
  • .Net 4.5



Shavlik Patch for Microsoft System Center User's Guide | Download
Shavlik Patch for Microsoft System Center Release Notes | Download
Supported Applications | View

Additional Shavlik Patch documentation

Demos / Webinars


Introducing the New Shavlik Patch for Microsoft System Center
With the new version of Shavlik Patch, you will see Support for SCCM 2012, an integrated console, and expanded third-party patch catalog.


Preparing to Use Shavlik Patch for Microsoft System Center
Watch tips and tricks for installing and configuring the latest version of Shavlik Patch to get you started


Using Shavlik Patch for Microsoft System Center and SCCM 2012 to Update Third-party Applications
View how to automate patch downloads, configure SCCM 2012, and deploy patches with Shavlik Patch

What's New

October Patch Tuesday Round-Up
Microsoft had a rough month.  Instead of the nine announced bulletins they ...

No POODLES Allowed! How to Avoid the POODLE Vulnerability
Ever wonder why poodles seem so evil? Maybe it is because of the pretentiou...

Patch Tuesday Advanced Notification October 2014
Microsoft has announced 9 bulletins for October 2014, three of which are ra...