Source: wikibot/vulnerabilities-equities-process
= Vulnerabilities Equities Process
{wiki=Vulnerabilities_Equities_Process}
The Vulnerabilities Equities Process (VEP) is a formalized process used by the United States government, primarily within the context of cybersecurity, to determine how to handle newly discovered software vulnerabilities. The VEP's main goal is to weigh the potential risks and benefits of disclosing a vulnerability to the public versus keeping it secret for intelligence or law enforcement purposes.