The answer to this question is false. This is because the NVD doesn't perform such tests on their own. Instead they they rely on third-party vendors, software researchers, etc to get such reports and do the assignment of CVSS scores for softwares
The National Vulnerability Database (NVD) is the United State governments leading resource for software vulnerability
The answer is : True. An audit trail is a record of how a transaction was handled from input through processing and output. An audit trail is the evidence, such as purchase orders and invoices, that a financial transaction actually occurred.