CISA有一個STAKEHOLDER-SPECIFIC VULNERABILITY CATEGORIZATION
定義了漏洞管理的四個決定:
- Track
- Track*
- Attend
- Act
利用五個項目來判斷:
- Exploitation status
- Technical impact
- Automatable
- Mission prevalence
- Public well-being impact
詳情請看: