Vulnerability Coverage
Plerion Workload Scanner will report on vulnerabilities from these software components:
OS Security Updates
- Linux kernel and kernel package vulnerabilities.
- Microsoft Windows vulnerabilities related to out-of-date versions, missing security updates or security patches.
OS Packages
Workload scanner will report on packages provided by vendors (e.g. Ubuntu, RedHat) and OS package managers (e.g. yum, apk, dpkg, etc.).
ℹ️
Workload scanner does not report on self-compiled packages or binaries.
| OS | Security Advisory |
|---|---|
| AlmaLinux | AlmaLinux Product Errata (opens in a new tab) |
| Alpine Linux | Alpine Security Database (opens in a new tab) |
| Amazon Linux | Amazon Linux Security Center (opens in a new tab) |
| Arch Linux | Vulnerable issues - Arch Linux (opens in a new tab) |
| Azure Linux | Azure Linux Vulnerability Data (opens in a new tab) |
| Chainguard/Wolfi Linux | Chainguard Security Advisories (opens in a new tab) |
| Debian | Debian Security Bug Tracker (opens in a new tab) |
| Microsoft Windows | Microsoft Security Update Guide (opens in a new tab) |
| OpenSUSE | OpenSUSE Security CVRF (opens in a new tab) |
| Oracle Linux | Oracle Linux Security (opens in a new tab) |
| Photon OS | Photon Security Advisories (opens in a new tab) |
| RHEL/CentOS | Red Hat Security Data (opens in a new tab) |
| Rocky Linux | Rocky Enterprise Software Foundation Product Errata (opens in a new tab) |
| Ubuntu | Ubuntu Security CVE Reports (opens in a new tab) |
Programming Language Specific Packages
Workload scanner will report on packages managed by language specific package managers (e.g. npm, yarn, pip, gem, etc.) and the related manifest files and post-build artifacts (e.g. package.json, package-lock.json, yarn.lock, Pipfile.lock, requirements.txt, Gemfile.lock, gemspec, etc.).