UnixTime

Research Note

Vulnerability Register and Remediation Tracker

Use this tracker to record vulnerabilities, exposure, owners, treatment actions, due dates, retests, and closure.

On this page

When to use this

Use this tracker to record vulnerabilities, exposure, owners, treatment actions, due dates, retests, and closure.

Tracker

Vulnerability ID Asset/system Severity Exposure Owner Treatment Due date Change ID Retest result Status
TBD TBD Critical/High/Medium/Low Internet/internal/isolated TBD Patch/mitigate/accept TBD TBD Pass/fail/TBD Open/closed/accepted

Minimum checks

  • Asset owner assigned.
  • Exposure and business impact considered.
  • Treatment decision recorded.
  • Due date aligns with risk.
  • Retest evidence attached before closure.
  • Accepted residual risk has approval.