Given there's a public resource of vulnerable software at https://www.cvedetails.com/ - is there any way to pull that data into Lansweeper, given it obviously has the software/version data?
I read https://www.lansweeper.com/resources/vulnerability-updates/ which states "Lansweeper holds more than 400 built-in network reports in the report library, but ad-hoc vulnerabilities mostly require a custom vulnerability report " - which to me seems a bit wrong - cvedetails has TONS of info about published vulnerabilities - why not pull from there??
I can't really give specific advice as I don't know the circumstances but in my previous jobs it was always my opinion that I should avoid using my limited time and resources on something if it was on a partners roadmap. Better to focus my time and effort on the other priorities. Waiting can be a pain, but building yourself is always more effort than expected and the maintenance etc is always unexpectedly more hassle than planned.
That said it really depends how urgent you need it.
Maybe worth reaching out to your Lansweeper account contact to get an update (there may be a chance we will be looking for customers to work with)
Hi, we are looking at building a level of vulnerabilities into the product using nist as the data source (which I believe is where the referenced site above gets its data from). We haven't got a planned release but are actively working something in the lab - hopefully we will announce more soon. Thanks for the feedback.