1. Home
  2. Mapping Frameworks
  3. CSA CCM Home
  4. Application Vulnerability Remediation

CSA CCM AIS-07

Define and implement a process to remediate application security vulnerabilities, automating remediation when possible.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
AIS-07 Application Vulnerability Remediation mitigates T1210 Exploitation of Remote Services
Comments
The control requires prioritized remediation based on risk assessment and CVSS scores, automated patch management, and integration of remediation tools into CI/CD pipelines to address vulnerabilities as early as possible in the development lifecycle.
AIS-07 Application Vulnerability Remediation mitigates T1211 Exploitation for Defense Evasion
Comments
The control requires prioritized remediation based on risk assessment and CVSS scores, automated patch management, and integration of remediation tools into CI/CD pipelines to address vulnerabilities as early as possible in the development lifecycle.
AIS-07 Application Vulnerability Remediation mitigates T1212 Exploitation for Credential Access
Comments
The control requires prioritized remediation based on risk assessment and CVSS scores, automated patch management, and integration of remediation tools into CI/CD pipelines to address vulnerabilities as early as possible in the development lifecycle.
AIS-07 Application Vulnerability Remediation mitigates T1190 Exploit Public-Facing Application
Comments
The control requires prioritized remediation based on risk assessment and CVSS scores, automated patch management, and integration of remediation tools into CI/CD pipelines to address vulnerabilities as early as possible in the development lifecycle.
AIS-07 Application Vulnerability Remediation mitigates T1195.002 Compromise Software Supply Chain
Comments
The control requires prioritized remediation based on risk assessment and CVSS scores, automated patch management, and integration of remediation tools into CI/CD pipelines to address vulnerabilities as early as possible in the development lifecycle.