Security Policy Reporting a Vulnerability Give details about the vulnerability including the CVE link (if any). Give details about how the vulnerability can be exploited. Report where the vulnerability currently lies in the codebase.