🛡️SecOSS
+ Scan
🛡️SecOSS

No account needed

Data stays in your browser

Linux Server CVE Scanner

Audit installed packages on any Linux server — no agent, no SSH access required

Run one command on your server, paste the output into SecOSS, and get an instant CVE report for every installed package — no agent installation, no SSH credentials shared. Supports Debian and Ubuntu (dpkg), Red Hat, CentOS and Fedora (rpm), and Alpine Linux (apk). WSL environments are also supported.

How to use

  1. 1On your server, run the correct command: dpkg -l (Debian/Ubuntu), rpm -qa (RHEL/CentOS/Fedora), or apk info -v (Alpine Linux).
  2. 2Copy the full command output and paste it into the text box in SecOSS.
  3. 3SecOSS auto-detects your Linux distribution and parses the package list.
  4. 4Review CVEs by severity — see exactly which installed packages need patching and what the safe version is.

🪟 Windows Subsystem for Linux (WSL)

Step 1 — Export packages from your server

dpkg -l > packages.txt

Then paste the output below or upload the file — no internet connection required on the server.