IVS-05: Vulnerability Management

Control Family:

Infrastructure & Virtualization Security

CSF v1.1 References:

PR.IP-12
DE.CM-8
RS.MI-3

PF v1.0 References:

PR.PO-P10

Control Statement

Implementers shall ensure that the security vulnerability assessment tools or services accommodate the virtualization technologies used (e.g., virtualization aware).

Control Statement

Related Controls

NIST Special Publication 800-53 Revision 5

NIST Special Publication 800-53 Revision 4