There is no list or pre-install verification. Blocking is based on Microsoft's threat intelligence and AV signatures. MDE admins can add an allow or allow-with-warning option as a custom indicator. This would override any Microsoft blocks if encountered.
list of products, MDE Plan 2 would detect as vulnerable?
Is there a source to check, whether a specific product would be recognized as vulnerable in MDEp2?
e.g. I have the need to install Pandoc. Would MDEp2 warn me, if there is a publicly known vulnerability/exploit for my installations just like it does for vlc, openssl,... you name it.