Supported Environments

Linux Host Scan

Supported distributions for Linux host scan are:

Distribution Supported Versions
Red Hat Enterprise Linux 6, 7, 8, 9
CentOS 7, 8
Amazon Linux 2, 2022, 2023
Debian 9, 10, 11
Ubuntu 14, 16, 18, 20, 22
Oracle Linux 6, 7, 8
Rocky Linux 8
AlmaLinux OS 8
Fedora Linux 32, 33, 34, 35
openSUSE tumbleweed
openSUSE Leap 15.2, 15.3
SUSE Enterprise 11 12 15

  • Only x86 and ARM CPUs are supported.

  • Vulnerabilities published during extended update support periods

  • The status of extended support is as follows:

    • EUS for Red Hat Enterprise Linux is currently unsupported for now.
    • EMS for Ubuntu is capable of detecting vulnerabilities.

Linux Paste Scan

Supported distributions for Linux paste scan are:

Distribution Supported Versions
Red Hat Enterprise Linux 6, 7, 8, 9
CentOS 7, 8
Amazon Linux 2, 2022, 2023
Debian 9, 10, 11
Ubuntu 16, 18, 20
Rocky Linux 8
AlmaLinux OS 8
Fedora Linux 32, 33, 34, 35
openSUSE tumbleweed
openSUSE Leap 15.2, 15.3
SUSE Enterprise 11 12 15

Windows Host

Supported distributions for Windows host scan are:

Distribution Supported Versions
Windows Server 2016, 2019, 2022
Windows 10, 11

Windows Paste Scan

Supported distributions for Windows paste scan are:

Distribution Supported Versions
Windows Server 2016, 2019, 2022
Windows 10, 11

Container Image Scan (Trivy)

Please refer to trivy’s documentation for supported distributions for Docker scan (Trivy).

Also, for the regular version of How to install Trivy and scan in a local environment, the following OSes are the only environments that can be set up:

  • Red Hat Enterprise Linux
  • CentOS
  • Amazon Linux
  • Debian
  • Ubuntu
  • Rocky Linux
  • AlmaLinux OS
  • Fedora Linux
  • openSUSE
  • openSUSE Leap
  • SUSE Enterprise
  • Oracle Linux
  • FreeBSD

Container Image Scan (ECR/GCR)

Refer to the ECR and GCR documentation.

Application Dependency Libraries

Lockfile Paste Scan

Supported by Lockfile Paste Scan.

Lang lockfile Dev dependencies
Ruby Gemfile.lock included
Python Pipfile.lock
poetry.lock, requirements.txt		 excluded
included
PHP composer.lock excluded
Node.js package-lock.json
yarn.lock		 excluded
included
.NET packages.lock.json included
Go go.sum included
Rust Cargo.lock included
C / C++ conan.lock excluded
Java - -

Vuls Scanner Scan with Lockfile Specified

Supported by Vuls Scanner Scan with Lockfile Specified.

Lang File Dev dependencies
Ruby Gemfile.lock included
Python Pipfile.lock
poetry.lock, requirements.txt		 excluded
included
PHP composer.lock excluded
Node.js package-lock.json
yarn.lock		 excluded
included
.NET packages.lock.json included
Go go.sum
Go binary		 included
excluded
Rust Cargo.lock included
C / C++ conan.lock excluded
Java pom.xml, gradle.lockfile
jar, war, ear, par		 excluded
included

Trivy Scan with Filesystem Path Specified

Refer to trivy documentation for supported languages of Trivy Scan with Filesystem Path Specified.

In addition, the How to Install Trivy and Scan in Local Environment normal version can be set up only on the following OS:

  • Red Hat Enterprise Linux
  • CentOS
  • Amazon Linux
  • Debian
  • Ubuntu
  • Rocky Linux
  • AlmaLinux OS
  • Fedora Linux
  • openSUSE
  • openSUSE Leap
  • SUSE Enterprise
  • Oracle Linux
  • FreeBSD

CPE Scan

FutureVuls Screen for Registering CPE detects products registered with NVD and JVN.

WordPress Scan

WordPress Scan targets WordPress Core, plugins, and themes supported by wpscan.com.