Enginsight Vulnerability Management is a module within the Enginsight all-in-one cybersecurity platform that identifies, assesses, and remediates security vulnerabilities across IT infrastructure. It is available as both SaaS and on-premises deployments and supports Windows, Linux, and macOS environments. The platform uses an agent (Pulsar Agent) installed on servers and clients to perform whitebox vulnerability scans, inventorying all installed software including portable apps, Java libraries, and embedded applications. This agent-based approach minimizes false positives and validates detected CVEs using meta-information and software type analysis. For devices where agent installation is not possible (e.g., network peripherals), agentless scanning is performed using network sensors (Hacktor for internal networks, Observer for internet-facing assets). Websites and web portals can also be scanned for vulnerabilities. Optional authentication providers (SNMP, WMI, SSH) can be configured to expand scan results. Each detected vulnerability is assigned a CVE identifier and scored using CVSS (1–10). A per-asset risk score supports patch prioritization. Alerts notify responsible personnel of newly discovered vulnerabilities, and links to NIST database entries and exploit references are provided. The integrated Update Manager allows targeted patch deployment across multiple servers and clients, with support for automation and restriction to security-only updates. It is compatible with Windows Server Update Services (WSUS) and supports third-party software patching on Linux. Configuration management is included, using Security Technical Implementation Guides (STIGs) for common operating systems. Autofixes can be applied directly from the platform, and custom guidelines can be added. Supported OS configurations include Windows 10, Windows Server 2008/2012/2016/2021, Ubuntu 16/18/20, Red Hat Enterprise 6, and SUSE Linux Enterprise 12.