General Maintenance question covering all CA maintenance

Document ID : KB000124422
Last Modified Date : 24/01/2019
Show Technical Document Details
If CA discovers a defect in a product CA Log Analyzer or CA-Insight that is a security vulnerability such as code that permits normal security measures to be bypassed or allows a user to elevate their own security in some way, is the fix for that defect identified in a way that distinguishes it from other type fixes? 
CA does have a system in place to notify the CA users communities utilizing the CVSS.