How would you respond to a critical vulnerability in a third-party dependency used by multiple teams at Leonardo DRS?