- CVE Limit: Any Matching vulnerabilities will fail validation
- CVE Risk Acceptance: Any Matching vulnerabilities will remove the CVE from subsequent rules, risk accepted
- KEV Limit: Any Matching vulnerabilities will fail validation
- EPSS Risk Acceptance: Any matching vulnerabilities that are below the risk acceptance will be removed from subsequent rules, risk accepted
- EPSS Limit: Any matching vulnerabilities that exceed the limit will fail validation
- Severity Limit: A count of severities that exceed the limit in any severity category will fail validation