netrise-platform-icon
NetRise Platform
Analyze compiled code to create accurate SBOMs and uncover risk within the software that actually executes on your devices and throughout your enterprise.
provenance-1
NetRise Provenance
Understand risk associated with open-source software components: origin, maintainers, and repository health across ecosystems
ZeroLens-icon
NetRise ZeroLens
Identify weaknesses in compiled software before bad actors find and exploit them.
integration-menu-img
Integrations
NetRise integrates seamlessly into your workflow. Explore our ecosystem to secure your software supply chain.
Solutions

Explore our comprehensive solutions designed to meet diverse industry needs and use cases, ensuring security, compliance, and maximum efficiency.

Featured Solution
Understand Origins Maintainers and Risk
Provenance Intelligence
Use Cases
ph_seal-check-light
Compliance Adherence
Ensure compliance with global standards.
ph_chart-scatter-light
Continuous Monitoring
Real-time insights and alerts.
ph_warning-light
Holistic Risk Visibility
Achieve full visibility on vulnerabilities.
ph_list-checks-light
Inventory & Querying
Track and manage software assets.
ph_hand-coins-light-1
SBOM Management
Maintain comprehensive software bills.
LockKey-Menu-Icon
Post-Quantum Cryptography Compliance
Be ready when quantum computing arrives.
ph_shield-check-light
EU CRA Compliance
Prove CRA readiness with evidence.
ph_graph-light
Provenance Intelligence
Understand origins, maintainers, and risk
ph_link-light
Managed Software Supply Chain Security
Visibility into what is inside software and where it comes from
By Industry
ph_user-rectangle-light
Consulting Firms
Solutions for consultancy needs.
ph_barbell
Device Manufacturers
Compliance and security across devices.
ph_building-office-light
Enterprise Corporations
Security for large-scale environments.
ph_bank-light
Government Organizations
Reliable public sector solutions.
ph_ambulance-light
Healthcare
Secure and compliant healthcare data.
ph_lightning-light
Power & Utilities
Manage risk in critical infrastructure.
Explore NetRise

Find product docs, customer success stories, and company updates in one place.

Latest Resources
netrise-eu-cra-data-sheet-featured-img
NetRise & the EU Cyber Resilience Act (CRA): Compliance Data Sheet
Company
ph_users-three-light
About Us
Learn about NetRise
ph_briefcase-light
Careers
Explore careers with NetRise
ph_calendar-star-light
Events
Conferences, Webinars, and Podcasts
ph_shield-check-light
Security
Review NetRise security and compliance practices
ph_megaphone-light
Newsroom
Press releases, news coverage, and industry awards
Resource Library
note-light
Product Documents
Learn the platform, fast — briefs and data sheets
thumbs-up-light
Customer Success Stories
Outcome-focused stories from teams building and buying secure software
ph_newspaper-light
Deeper Dives
eBooks, Whitepapers, and longer-form content
ph_note-pencil-light
Blog
Stay informed with our latest articles
ph_microphone-light
Webinars, Podcasts, and Videos
Watch and listen on demand
ph_books-light
All Resources
Explore our full resource library by topic, industry, or asset
BlogPartners
Schedule a Demo
Schedule a Demo

White Paper

Your Security Scans Are Missing Critical Vulnerabilities

The code you think you’re running isn’t the code that’s actually running. Most scanners read manifests and package managers—not compiled reality. This white paper shows why critical vulnerabilities hide in binaries and how to find them.

Download the Report
netrise-security-scans-missing-critical-vulnerabilities-report-ft

Why This Paper Matters

  • logo-star

    Manifests Don’t Reflect Reality

    Traditional SCA shows declared dependencies, not what is actually compiled into production binaries.

  • Hidden Risk Lives in the Binary

    Long-tail vulnerabilities often exist in compiled components that never appear in source-based reports.

  • Closing the Gap Between Intent and Execution

    Security teams need a repeatable way to detect, validate, and remediate hidden exposures at scale.

netrise-security-scans-missing-critical-vulnerabilities

Hidden Risks in Your Attack Surface

If you build, secure, or manage software, your current scanners are likely missing significant portions of your real attack surface. Over the last 18 months, NetRise analysis repeatedly uncovered exploitable components absent from SBOMs and system diagnostics —from statically linked crypto to vendored libraries.

  • Manifest/SCA tools often miss statically linked and vendored code embedded in executables.
  • “Patched” systems can still execute old vulnerable versions inside modules and extensions.
  • Build pipelines introduce hidden dependencies via flags, caches, and code generation.
  • You need binary composition analysis to know what’s truly running.
netrise-security-scans-missing-critical-vulnerabilities1

From Escalation to Evidence

Security teams challenged our findings. We welcomed it—and proved them out with manual binary forensics:

  • OpenSSL 3.0.0 inside Python SSL modules System packages showed OpenSSL 3.2.x, but Python extensions contained statically linked OpenSSL 3.0.0 , leaving CVE-2022-3602/3786 paths open despite “patched” libraries.
  • rsync shipping a vendored zlib 1.2.8 Package managers reported zlib 1.3.1 , yet the rsync binary included a vendored 1.2.8 copy compiled in by default— invisible to manifest checks and ldd .
Signature-Branded-Linear-Red-Background

What You’ll Learn in This White Paper

  • Why scanners miss real risk How static linking, vendoring, transitive resolution, build caches, and code generation insert undocumented components into your executables.
  • How to prove (or disprove) a finding A field-tested validation playbook: strings/symbol inspection, source cross-checks, and build-flag analysis to turn a “weird result” into actionable evidence .
  • How to prioritize and fix Map hidden components to CVEs, confirm exploitability, and drive recompilation or vendor fixes (e.g., --with-included-zlib=no , Python system-lib flags).
  • How to operationalize visibility Why binary composition analysis must augment SBOM/SCA so your inventory, compliance, and response reflect what actually runs .
Background conceptual image of digital 3d icons

Why Scanners Miss It (and Attackers Don’t)

Bottom line: manifests represent intent . Only analyzing compiled artifacts reveals reality.

  • Static linking freezes vulnerable code inside modules— outside dynamic link checks.
  • Vendored libraries live inside source trees and binaries, never appearing in manifests.
  • Build choices (flags, caches, minimal version selection, hoisting) silently swap versions.
  • Code generation creates vulnerable paths that don’t exist pre-compile.

You might also like

Learn how we helped the customers to reach the next level

View All
Keeping the Pace with NetRise LinkedIn Live, Episode 3: The Blast Radius Problem, with three speakers
Webinar

Keeping the Pace: Innovation Insights - The Blast Radius Problem

Keeping the Pace with NetRise LinkedIn Live, Episode 2: Vulnerability Prioritization, with two speakers
Webinar

Keeping the Pace: Innovation Insights - Vulnerability Prioritization

ThreatCon1 talk thumbnail: Fragile By Design: Large Scale Evidence of Software Supply Chain Risk
Webinar

Fragile by Design: Large-Scale Evidence of Software Supply Chain Risk