|
|
|
|
|
|
by rfd4sgmk8u
1639 days ago
|
|
|
So, you either explain to the customer about how the CVE is out of scope in this context due to the various mitigations or lack of exploitability, or you patch it. Every CVE is real, and should be addressed. Your customers pay you to help them understand it. |
|
|