A pаtch review finds thаt а firewall banner still repоrts versiоn 8.1.2, which NVD maps tо a critical CVE. The vendor advisory says backported patches may leave the visible version unchanged. OpenVAS reports the CVE from the banner, while an authenticated configuration export shows the relevant hotfix installed two months ago. A Nuclei template returns no vulnerable response but only covers one of three affected code paths. Evidence packet: the authenticated export contains the hotfix identifier listed in the vendor advisory; the banner is known to remain stale on backported builds; the Nuclei template exercised only the unauthenticated status endpoint; the validation system supports pair-level false-positive, confirmed, and risk accepted states but keeps original evidence history. Select all recommendations that should survive review.