What's new

limwainstein · limwainstein · commit 2057ada2644d · 2025-12-08T21:51:56.000+02:00
diff --git a/defender-vulnerability-management/whats-new-in-microsoft-defender-vulnerability-management.md b/defender-vulnerability-management/whats-new-in-microsoft-defender-vulnerability-management.md
@@ -30,7 +30,10 @@ This article provides information about new features and important product updat
 
 ## December 2025
 
-(Preview) Microsoft Secure Score now includes the **Disable Remote Registry service on Windows** recommendation. This recommendation prevents remote access to the Windows registry, reducing attack surface and blocking unauthorized configuration changes, privilege escalation, and lateral movement.
+- (GA) [CVE exceptions](tvm-exception-overview.md#cve-exceptions) are now generally available, and also support:
+    - The **False positive** justification. [Learn more](tvm-exception-overview.md#justification)
+    - The API `status` API field. [Learn more](/defender-endpoint/api/get-all-vulnerabilities)
+- (Preview) Microsoft Secure Score now includes the **Disable Remote Registry service on Windows** recommendation. This recommendation prevents remote access to the Windows registry, reducing attack surface and blocking unauthorized configuration changes, privilege escalation, and lateral movement.
 
 ## November 2025
 
