DC3 was assigned by the Secretary of Defense to be the DoD focal point for receiving vulnerability reports and interacting with researchers consistent with DC3's existing information sharing responsibilities as a Federal Cybersecurity Center.
VDP Fact Sheet
VDP Bug Bytes
VDP Annual Reports
Vulnerabilities not found by existing red-team and automated efforts
Non-compliance with cyber security guidance
vulnerabilities on DoD networks