In resolving vulnerabilities, software developers perform root cause analysis and, to the greatest extent possible, seek to remediate entire vulnerability classes.
Topic
Reporting and resolving vulnerabilities
Applicable to
all
History
Dec 2023
In resolving vulnerabilities, software developers perform root cause analysis and, to the greatest extent possible, seek to remediate entire vulnerability classes.
A new control recommending that when software developers are resolving vulnerabilities they perform root cause analysis and to the greatest extent possible seek to remediate entire vulnerability classes was added.