Home
Mapping Frameworks
CRI Profile Home
Vulnerability remediation

CRI Profile PR.PS-06.06

The system development lifecycle remediates known critical vulnerabilities, and critical vulnerabilities discovered during testing, prior to production deployment.

Mappings

Capability ID	Capability Description	Mapping Type	ATT&CK ID	ATT&CK Name	Notes
PR.PS-06.06	Vulnerability remediation	Mitigates	T1495	Firmware Corruption	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Checking the integrity of the existing BIOS or EFI to determine if it is vulnerable to modification and updating firmware can mitigate risks of exploitation and/or abuse.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1068	Exploitation for Privilege Escalation	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Ensuring software is up-to-date with the latest security patches helps prevent adversaries from exploiting known vulnerabilities, reducing the risk of successful attacks.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1211	Exploitation for Defense Evasion	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Ensuring software is up-to-date with the latest security patches helps prevent adversaries from exploiting known vulnerabilities, reducing the risk of successful attacks.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1203	Exploitation for Client Execution	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Ensuring software is up-to-date with the latest security patches helps prevent adversaries from exploiting known vulnerabilities, reducing the risk of successful attacks.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1137.005	Outlook Rules	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Apply vendor security updates to mitigate risks of exploitation and/or abuse of Office mechanisms that can be used for persistence when an Office-based application is started.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1137	Office Application Startup	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Apply vendor security updates to mitigate risks of exploitation and/or abuse of Office mechanisms that can be used for persistence when an Office-based application is started.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1137.003	Outlook Forms	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Apply vendor security updates to mitigate risks of exploitation and/or abuse of Office mechanisms that can be used for persistence when an Office-based application is started.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1542.001	System Firmware	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Checking the integrity of the existing BIOS or EFI to determine if it is vulnerable to modification and updating firmware can mitigate risks of exploitation and/or abuse.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1542.002	Component Firmware	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Checking the integrity of the existing BIOS or EFI to determine if it is vulnerable to modification and updating firmware can mitigate risks of exploitation and/or abuse.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1176	Browser Extensions	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Ensuring operating systems and software are using the most current version can mitigate risks of exploitation and/or abuse.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1542	Pre-OS Boot	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Checking the integrity of the existing BIOS or EFI to determine if it is vulnerable to modification and updating firmware can mitigate risks of exploitation and/or abuse.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1137.004	Outlook Home Page	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Apply vendor security updates to mitigate risks of exploitation and/or abuse of Office mechanisms that can be used for persistence when an Office-based application is started.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1212	Exploitation for Credential Access	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Ensuring software is up-to-date with the latest security patches helps prevent adversaries from exploiting known vulnerabilities, reducing the risk of successful attacks.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1195	Supply Chain Compromise	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Continuous monitoring of vulnerability sources and the use of automatic and manual code review tools can mitigate Supply Chain Compromise.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1195.001	Compromise Software Dependencies and Development Tools	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Continuous monitoring of vulnerability sources and the use of automatic and manual code review tools can mitigate Supply Chain Compromise.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1190	Exploit Public-Facing Application	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Ensuring software is up-to-date with the latest security patches helps prevent adversaries from exploiting known vulnerabilities, reducing the risk of successful attacks.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1210	Exploitation of Remote Services	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Ensuring software is up-to-date with the latest security patches helps prevent adversaries from exploiting known vulnerabilities, reducing the risk of successful attacks.
PR.PS-06.06	Vulnerability remediation	Mitigates	T1195.002	Compromise Software Supply Chain	Comments This diagnostic statement provides for identifying and remediating vulnerabilities as part of the SDLC. Continuous monitoring of vulnerability sources and the use of automatic and manual code review tools can mitigate Supply Chain Compromise.