From FedRAMPs perspective, is it ever acceptable to label critical vulns (specifically ones identified by CISA an known exploited) as an Operational Requirement in a POAM?
[link] [comments]
old.reddit.com / @/u/spicekatz, https://old.reddit.com/user/spicekatz
From FedRAMPs perspective, is it ever acceptable to label critical vulns (specifically ones identified by CISA an known exploited) as an Operational Requirement in a POAM?
published over 1 year ago