It automates the work of system administrators evaluating security flaws of a system. Using vulnerabilities databases (OVAL, NVD, ...) freely available on the internet, it can detect in a system its vulnerabilities (CVEs).
LSS is free and offers GPL2 licensing. It's written in Java.
You can start here by reading read users manual.