Merge pull request #1448 from MicrosoftDocs/replaces-1368

padmagit77 · web-flow · commit b5a71a2d47bd · 2024-09-24T22:14:30.000+05:30
Replaces 1368
diff --git a/defender-endpoint/gov.md b/defender-endpoint/gov.md
@@ -7,7 +7,7 @@ ms.author: deniseb
 author: denisebmsft
 ms.reviewer: jesquive
 ms.localizationpriority: medium
-ms.date: 05/08/2024
+ms.date: 09/24/2024
 manager: deniseb
 audience: ITPro
 ms.collection: 
@@ -182,6 +182,8 @@ These are the features and known gaps for [Mobile Threat Defense (Microsoft Defe
 
 > [!NOTE]
 >
-> <sup>1</sup> The Defender Vulnerability Management Report inaccuracy functionality is not available for GCC, GCC High and DoD customers.
+> <sup>1</sup> The following Defender Vulnerability Management functionality is not available for GCC, GCC High and DoD customers:
+> - Report inaccuracy
+> - Request CVE support
 
 [!INCLUDE [Microsoft Defender for Endpoint Tech Community](../includes/defender-mde-techcommunity.md)]
diff --git a/defender-vulnerability-management/tvm-weaknesses.md b/defender-vulnerability-management/tvm-weaknesses.md
@@ -12,7 +12,7 @@ ms.collection:
   - Tier1
 ms.topic: conceptual
 search.appverid: met150
-ms.date: 07/31/2024
+ms.date: 09/24/2024
 ---
 
 # Vulnerabilities in my organization
@@ -81,7 +81,7 @@ If you select a CVE from the weaknesses page, a flyout panel opens with more inf
 
 For each CVE, you can see a list of the exposed devices and the affected software.
 
-## Exploit Prediction Scoring System (EPSS) 
+## Exploit Prediction Scoring System (EPSS)
 
 The Exploit Prediction Scoring System (EPSS) generates a data-driven score for the probability of a known software vulnerability being exploited in the wild. EPSS uses current threat information from the CVE and real-world exploit data. For each CVE, the EPSS model produces a probability score between 0 and 1 (0% and 100%). The higher the score, the greater the probability that a vulnerability will be exploited. Learn more about [EPSS](https://www.first.org/epss/). 
 
@@ -96,7 +96,7 @@ When the EPSS is greater than 0.9, the **Threats** column tooltip is updated wit
    :::image type="content" source="/defender/media/defender-vulnerability-management/tvm-weaknesses-epss-tip.png" alt-text="Screenshot of the weaknesses epss score in the threat tooltip." lightbox="/defender/media/defender-vulnerability-management/tvm-weaknesses-epss-tip.png":::
 
 > [!NOTE]
- > Note that if the EPSS score is smaller than 0.001, it’s considered to be 0. 
+> Note that if the EPSS score is smaller than 0.001, it’s considered to be 0. 
 
 You can use the [Vulnerability API](/defender-endpoint/api/vulnerability) to see the EPSS score. 
 
@@ -126,17 +126,20 @@ You can request for support to be added to Defender Vulnerability Management for
 1. Select the CVE from the [Weaknesses](https://security.microsoft.com/vulnerabilities/cves) page in the Microsoft Defender portal
 2. Select **Please support this CVE** from the Vulnerability details tab
 
-The request is sent to Microsoft and will assist us in prioritizing this CVE among others in our system.
+   The request is sent to Microsoft and will assist us in prioritizing this CVE among others in our system.
 
-:::image type="content" alt-text="Weakness flyout with support CVE button example." source="/defender/media/defender-vulnerability-management/weaknesses-support-cve.png" lightbox="/defender/media/defender-vulnerability-management/weaknesses-support-cve.png":::
+   > [!NOTE]
+   > Request CVE support functionality is not available for GCC, GCC High and DoD customers.
+
+   :::image type="content" alt-text="Weakness flyout with support CVE button example." source="/defender/media/defender-vulnerability-management/weaknesses-support-cve.png" lightbox="/defender/media/defender-vulnerability-management/weaknesses-support-cve.png":::
 
 ## View Common Vulnerabilities and Exposures (CVE) entries in other places
 
 ### Top vulnerable software in the dashboard
 
 1. Go to the [Defender Vulnerability Management dashboard](tvm-dashboard-insights.md) and scroll down to the **Top vulnerable software** widget. You'll see the number of vulnerabilities found in each software, along with threat information and a high-level view of device exposure over time.
 
-:::image type="content" alt-text="Top vulnerable software card." source="/defender/media/defender-vulnerability-management/tvm-top-vulnerable-software500.png" lightbox="/defender/media/defender-vulnerability-management/tvm-top-vulnerable-software500.png":::
+   :::image type="content" alt-text="Top vulnerable software card." source="/defender/media/defender-vulnerability-management/tvm-top-vulnerable-software500.png" lightbox="/defender/media/defender-vulnerability-management/tvm-top-vulnerable-software500.png":::
 
 2. Select the software you want to investigate.
 3. Select the **Discovered vulnerabilities** tab.
@@ -161,9 +164,9 @@ To see the detection logic:
 2. Select **Open device page** and select **Discovered vulnerabilities** from the device page.
 3. Select the vulnerability you want to investigate.
 
-A flyout opens and the **Detection logic** section shows the detection logic and source.
+   A flyout opens and the **Detection logic** section shows the detection logic and source.
 
-:::image type="content" alt-text="Detection Logic example that lists the software detected on the device and the KBs." source="/defender/media/defender-vulnerability-management/tvm-cve-detection-logic.png":::
+   :::image type="content" alt-text="Detection Logic example that lists the software detected on the device and the KBs." source="/defender/media/defender-vulnerability-management/tvm-cve-detection-logic.png":::
 
 The "OS Feature" category is also shown in relevant scenarios. This is when a CVE would affect devices that run a vulnerable OS if a specific OS component is enabled. For example, if Windows Server 2019 or Windows Server 2022 has vulnerability in its DNS component we only attach this CVE to the Windows Server 2019 and Windows Server 2022 devices with the DNS capability enabled in their OS.
 
@@ -177,7 +180,7 @@ Report a false positive when you see any vague, inaccurate, or incomplete inform
 4. Fill in the requested details about the inaccuracy. This varies depending on the issue you're reporting.
 5. Select **Submit**. Your feedback is immediately sent to the Microsoft Defender Vulnerability Management experts.
 
-:::image type="content" alt-text="Report inaccuracy options." source="/defender/media/defender-vulnerability-management/report-inaccuracy-software.png" lightbox="/defender/media/defender-vulnerability-management/report-inaccuracy-software.png":::
+   :::image type="content" alt-text="Report inaccuracy options." source="/defender/media/defender-vulnerability-management/report-inaccuracy-software.png" lightbox="/defender/media/defender-vulnerability-management/report-inaccuracy-software.png":::
 
 ## Related articles
 
