Archived Content

In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.

PUBLICATION

Vulnerability Exploitability eXchange (VEX) Status Justification Document (June 2022)

Publish Date

June 01, 2022

Related topics:

Securing Networks

This resource provides the recommended NOT AFFECTED status justifications of a VEX document and offers the reader examples of when the different status justifications might be used. VEX documents may contain a justification statement of why the VEX document creator chose to assert that the product’s status is NOT AFFECTED. This document was drafted by stakeholders through an open and transparent, community-led process.

Resource Materials

Resource Name	File Type	File Size	Language
Vulnerability Exploitability eXchange (VEX) Status Justification Document (June 2022)	PDF, 306.04 KB	306.04 KB

Archived Content

Vulnerability Exploitability eXchange (VEX) Status Justification Document (June 2022)

Resource Materials

Tags

Microsegmentation in Zero Trust Part One: Introduction and Planning

Guidance for SIEM and SOAR Implementation

Primary Mitigations to Reduce Cyber Threats to Operational Technology

Secure by Design Alert: Eliminating Buffer Overflow Vulnerabilities

Archived Content

Vulnerability Exploitability eXchange (VEX) Status Justification Document (June 2022)

Resource Materials

Tags

Related Resources

Microsegmentation in Zero Trust Part One: Introduction and Planning

Guidance for SIEM and SOAR Implementation

Primary Mitigations to Reduce Cyber Threats to Operational Technology

Secure by Design Alert: Eliminating Buffer Overflow Vulnerabilities