When looking at the vulnerabilities some may not be applicable but show no resource RE:

Carbon Black Cloud: All Supported Versions

This can occur if the CVE shows no Article or Download for the NIST Vulnerabilities Data to populate and compare against causing potential false positives in the vulnerability scanner

If the vulnerability is false positive it can be dismissed as mentioned here

If the fix for a vulnerability is to make changes that don't involve an update and the resource is blank it will need to be dismissed manually