The Sept. 15, 2020 Defense Department instruction "establishes policy, assigns responsibilities, and provides procedures for DOD vulnerability management and response to vulnerabilities identified in all software, firmware, and hardware within the DOD information network (DODIN)."