This standard specifies the management process, management requirements and verification methods for each stage of the network security vulnerability management process (including vulnerability discovery and reporting, receipt, verification, disposal, release, tracking, etc.). This standard applies to network security vulnerability management activities carried out by network product and service providers, network operators, vulnerability collection organizations, vulnerability emergency organizations, etc.
GB/T 30276-2020 Referenced Document
GB/T 25069 Information security techniques—Terminology*, 2022-03-09 Update
GB/T 28458-2020 Information security technology—Cybersecurity vulnerability identification and description specification
GB/T 30279-2020 Information security technology—Guidelines for categorization and classification of cybersecurity vulnerability
GB/T 30276-2020 history
2020GB/T 30276-2020 Information security technology—Specification for cybersecurity vulnerability management
2013GB/T 30276-2013 Information security technology.Vulnerability management criterion specification