Qualys found the following vulnerability with my machine.
Microsoft XML Core Services 4.0 with Service Pack 2 installed
When I checked my machine I found that I have MSXML 6.0 installed. Which is a cumulative release.
Do I still need to install XML 4.0 SP3 ? Is this more of Microsoft Question?