このカテゴリの弱点は、2022年3月に発表されたSEI ETF "Categories of Security Vulnerabilities in ICS "の "Gaps in obligations and training "カテゴリに関連しています。注:このカテゴリのメンバーには、レポートからの「最も近いITネイバー」推奨事項や、CWEチームによる提案も含まれています。これらの関係は将来のCWEバージョンで変更される可能性があります。
Weaknesses in this category are related to the "Gaps in obligations and training" category from the SEI ETF "Categories of Security Vulnerabilities in ICS" as published in March 2022: "OT ownership and responsibility for identifying and mitigating vulnerabilities are not clearly defined or communicated within an organization, leaving environments unpatched, exploitable, and with a broader attack surface." Note: members of this category include "Nearest IT Neighbor" recommendations from the report, as well as suggestions by the CWE team. These relationships are likely to change in future CWE versions.
不明