Security scanning for known vulnerabilities