Seeking Open Source Vulnerability Scanners for Offline Systems

A new employee, still a student, is looking for a solution to detect vulnerabilities in their company's systems. They have tested tools like OpenVAS, Grype, Vuls, Trivy, and OSV-Scanner, but none have been entirely satisfactory because the company wants a tool that only shows software requiring an update due to a known CVE. Additionally, the system to be scanned is completely offline, and data must be collected via a USB key to be analyzed on another machine.