Identification should include resources such as
National Vulnerability Database
(NVD), NIST
Cybersecurity Alerts and Advisories
, Cybersecurity and Infrastructure Security Agency (CISA), DHS
vendor websites.
Process/Skill Questions:
Why are vendor websites valuable resources when identifying vulnerability information?
How is the NIST NVD helpful?