Mismatch of vulnerabilities: Why does the CLI show a different number of vulnerabilities from the UI or an integration?