Management Board Decision 35/2024 adopting the Common Vulnerability Assessment Methodology