Since the upgrade to v10, we have been playing around with some reports in BFI and I was interested in the output of the “Vulnerable Software (Preview)” and it seemed to be really interesting.
The issue that I am having is that it appears to be showing all CVEs for a particular app instead of any outstanding CVEs for an app.
For example, I have IE 11 installed on a Win 2012 R2 system that is completely patched up, but it is showing 679 CVEs.
Is that is what is expected? If so, is there a way to have it only show outstanding CVEs only?