Which PCI DSS Requirement includes the following: Security vulnerabilities are identified and addressed?

$1.$

REQ$-03$: Protect Stored Account Data $-$ includes the following: Security vulnerabilities are identified and addressed.

$2.$

REQ$-04$: Protect Cardholder Data with Strong Cryptography During Transmission $-$ includes the following: Security vulnerabilities are identified and addressed.

$3.$

REQ$-05$: Protect all Systems and Networks from Malicious Software $-$ includes the following: Security vulnerabilities are identified and addressed.

$4.$

REQ$-06$: Develop and Maintain Secure Systems and Software $-$ includes the following: Security vulnerabilities are identified and addressed.