Logo
StreamLex Home
Logo
StreamLex Home
Laws
Laws
Recitals
Recitals
News
Trackers
Resources
Contact
About Us
News
Recitals
Trackers
Resources
Newsletter
Terms of Use
Privacy Notice
LinkedIn
undefined | StreamLex

EUCC Guidelines on Vulnerability Management

EUCC Scheme Guidelines on Vulnerability Management and Disclosure

This guidance outlines processes for vulnerability management and disclosure under the European Common Criteria-based cybersecurity certification scheme (EUCC). It provides recommendations for certificate holders on handling vulnerabilities, emphasizing compliance with ISO/IEC standards. The document addresses preparation, identification, coordination, and disclosure of vulnerabilities to ensure cybersecurity risk management.

Metadata

Author: European Union Agency for Cybersecurity (ENISA)

Status: Adopted / Published

Adoption date: 2025-02-12

Last updated: 08 Aug 2025

Category: Guidance

Subcategory: Official guidance

Relevant laws and articles:

CSA
55
56
58
63
Source URL:https://certification.enisa.europa.eu/publications/eucc-guidelines-vulnerability-management-and-disclosure-and-eccg-opinion_en

© 2026 StreamLex

NewsletterAbout UsTerms of UsePrivacy NoticeManage Cookies

© 2026 StreamLex