Vulnerability Exploitability eXchange

Learn how VEX documents can help manage software vulnerabilities

VEX White Paper Thumbnail

This white paper from our Senior Analyst for Artificial Intelligence and Machine Learning, Derek Kruszewski, explains what Vulnerability Exploitability eXchange (VEX) is and the crucial role it plays within the Software Bill of Materials (SBOM) and vulnerability management space. Derek sits on the National Telecommunications and Information Administration (NTIA) VEX Working Group.

  • How VEX reduces the cost of vulnerability management
  • The format of a VEX document
  • How VEX enables automation of vulnerability management