** Note that this is a public ticket, please refrain from adding any sensitive data. **

Description of Problem

After registering a RHEL 8.10 system with console.redhat.com via sub-man as well as insights-client, cve-2022-0516 ( CVSS 7.8 ) shows up as affected but without any advisories. 

How reproducible

Always

Steps to Reproduce

1. Install a RHEL 8.10 system ( even better a Satellite 6.15 )
2. Register the system with console.redhat.com as well as insights. 
3. Go to https://console.redhat.com/insights/inventory , Open the system, go to Vulnerability tab and clear all filters
4. Search for CVEs with Important and Critical Severities. 

Actual Behavior

Among ~50 CVEs, lots of CVEs from 2022\2021\2020\2019\2018 will show up and one of them would be cve-2022-0516  which has CVSS 7.8 and concerning for the end-user

Expected Behavior

cve-2022-0516  should not show applicable for a system if it already has the expected ERRATAs applied or have a much higher kernel version installed. 

Business Impact / Additional info

Bad product experience by end-user , needing to unnecessarily go through each and every old CVEs, just to find out which one is invalid or false-positive