My Nessus vulnerability scanner suddenly picked up a finding that was originally published on March 2020, and flagged all instances of VS 2015 Update 3 in my environment as lacking KB4538032. More specifically it says that this directory here:
C:\Program Files (x86)\Microsoft Visual Studio 14.0
Has an installed version of 14.0.25420.1, but actually needs 14.0.27539.1 - some digging around seems to indicate they mean the devenv.exe in COMMON7/IDE, since that EXE has version 14.0.25420.1 according to its details.
Installing KB4538032 works - it successfully installs and I see it in the "View Installed Updates" listing on Windows 10. However, it fails to increment the target file (assumed to be devenv), as the version remains 14.0.25420.1 and Nessus still finds it and flags it as being incorrect.
(Curiously Nessus' finding itself, which you can see here: https://www.tenable.com/plugins/nessus/134381 only talks about 2017 and 2019, but the patch here https://www.catalog.update.microsoft.com/Search.aspx?q=4538032 is definitely for 2015 - and neither 2017 nor 2019 are installed on these targets, excepting one).
Is there a follow-on action that needs to be done with this KB? It doesn't appear to work quite like Nessus expects, and if there's another way to update VS to the more current version that Nessus wants I'm not sure how to go about doing it.