Which type of vulnerability cannot be discovered in the course of a typical vulnerability assessment?