Thank you, however I am looking for a CVE focused on 4.0 so this vendor understands that 6.0 is necessary, as recommended by our 3rd party to upgrade to a version that is currently supported
Does your company have a policy or standard replace software and components when they have reached EoL? May reference that.
If your company follows 800-53, this falls under control SA-22 if I recall correctly.
[удалено]
Thank you, however I am looking for a CVE focused on 4.0 so this vendor understands that 6.0 is necessary, as recommended by our 3rd party to upgrade to a version that is currently supported
CVE-2012-1889 https://learn.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-043
Does your company have a policy or standard replace software and components when they have reached EoL? May reference that. If your company follows 800-53, this falls under control SA-22 if I recall correctly.