Description
Installed or tracked software can be checked locally against CVE vulnerability data. This is useful for administrators who want an additional security audit signal without relying only on distribution tooling.
CVE matching can produce false positives or miss issues if product names, versions, or databases are incomplete. Treat results as triage input and verify important findings before acting.