How is Insight detecting CVE-2023-38180

R7 is telling us that we have no devices subjected to this CVE. Devices have all been scanned with in the last 24-48hrs. According to our Defender ATP, we have a handful of devices that due in fact have the vulnerable software.
I have spot checked a handful of these devices in Defender and verified the vulnerable software is there. When I check R7 for those devices, the CVE isn’t listed.