Technical vulnerability management

6.9.6.1Management of technical vulnerabilities The control, implementation guidance and other information stated in ISO/IEC 27002:2013, 12.6.1 applies.
6.9.6.2Restriction on software installation The control, implementation guidance and other information stated in ISO/IEC 27002:2013, 12.6.2 applies