Didn't know where else to put this that made sense, but we have one old 2008 R2 (yes, I know, we are working on retiring it, but until then....) it is showing vulnerable for CVE- 2021- 21985 VMware. But I can find no trace of VMWare on this server, no vsphere, no remnants of anything, not even a mention in the registry. It does have the Veeam backup agent and install service, but that's it. I have no idea why it is popping for this CVE. Is there any other thing that can cause it to show positive for this?
Any thoughts or suggestions or comments are greatly appreciated.