NIST 800-171 R-3.11.3
Remediate Vulnerabilities by Risk
Official citation: 3.11.3
Class: core · Severity: high
Statement of the obligation — verify against source
3.11.3
What it means
Remediate the vulnerabilities you find in line with your risk assessments — prioritizing and fixing the highest-risk issues first within appropriate timeframes, rather than treating every finding the same.
Educational reference only — not legal advice. Consult a qualified assessor or attorney for binding compliance determinations.