fixes

denisebmsft · denisebmsft · commit 8e095e0b9841 · 2025-05-02T14:35:52.000-07:00
diff --git a/defender-vulnerability-management/defender-vulnerability-management-faq.md b/defender-vulnerability-management/defender-vulnerability-management-faq.md
@@ -124,9 +124,9 @@ Defender Vulnerability Management currently filters out CVEs marked as "Won't Fi
 
 Certain Linux distributions, such as RHEL, include large numbers of CVEs labeled as "Won't Fix" due to platform-specific or architectural decisions. These CVEs were previously displayed in the Microsoft Defender portal, but they caused confusion and inflated the recommendations list and exposure score. As a result, these were intentionally removed following internal review and Data Subject Rights (DSR) requests.
 
-Current Behavior:
+Here's what to expect:
 
-- "Won't Fix" CVEs are not shown in the MDVM portal.
+- "Won't Fix" CVEs are not shown in the [Microsoft Defender portal](https://security.microsoft.com).
 - These CVEs are excluded from vulnerability recommendations and scoring.
 - There is no current workaround to view them in the product experience.
 
diff --git a/defender-vulnerability-management/tvm-dashboard-insights.md b/defender-vulnerability-management/tvm-dashboard-insights.md
@@ -13,7 +13,7 @@ ms.collection:
 ms.custom: admindeeplinkDEFENDER
 ms.topic: concept-article
 search.appverid: met150
-ms.date: 03/06/2025
+ms.date: 05/02/2025
 ---
 
 # Microsoft Defender Vulnerability Management dashboard
@@ -31,15 +31,15 @@ Defender vulnerability management provides both security administrators and secu
 - Invaluable device vulnerability context during incident investigations
 - Built-in remediation processes through Microsoft Intune and Microsoft Endpoint Configuration Manager
 
-You can use Defender Vulnerability Management dashboard in the Microsoft Defender portal to:
+You can use Defender Vulnerability Management dashboard in the [Microsoft Defender portal](https://security.microsoft.com) to:
 
 - View your exposure score and Microsoft Secure Score for Devices, along with top security recommendations, software vulnerability, remediation activities, and exposed devices
 - Correlate EDR insights with endpoint vulnerabilities and process them
 - Select remediation options to triage and track the remediation tasks
 - Select exception options and track active exceptions
 
 > [!NOTE]
-> Devices that aren't active in the last 30 days aren't factored in on the data that reflects your organization's vulnerability management exposure score and Microsoft Secure Score for Devices.
+> Devices that aren't active in the last 30 days aren't factored in on the data that reflects your organization's vulnerability management exposure score and Microsoft Secure Score for Devices. In addition, CVEs marked as "won't fix" are not shown in the Microsoft Defender portal, and they're not included in vulnerability recommendations or scoring.
 
 Watch this video for a quick overview of what is in the Defender Vulnerability Management dashboard.
 
