Exam 200-201 topic 1 question 195 discussion

Actual exam question from Cisco's 200-201

Question #: 195
Topic #: 1

[All 200-201 Questions]

What is the difference between vulnerability and risk?

A. A vulnerability represents a flaw in a security that can be exploited, and the risk is the potential damage it might cause.
B. A risk is potential threat that adversaries use to infiltrate the network, and a vulnerability is an exploit.
C. A risk is a potential threat that an exploit applies to, and a vulnerability represents the threat itself.
D. A vulnerability is a sum of possible malicious entry points, and a risk represents the possibility of the unauthorized entry itself.

Show Suggested Answer

Suggested Answer: A 🗳️

by Eng_ahmedyoussef at Oct. 7, 2022, 3:59 p.m.

Comments

Submit Cancel

alhamry

7 months, 3 weeks ago

The answer is A. A vulnerability is a flaw or weakness in a system or network that can be exploited by attackers to cause harm, while risk is the likelihood or probability of that harm occurring and its potential impact. In other words, a vulnerability is a security weakness, and risk is the possibility that the vulnerability will be exploited to cause damage or loss. Vulnerabilities are one of the factors that contribute to the overall risk of a system or network, but risk is not the same as vulnerability.

upvoted 1 times

...

Eng_ahmedyoussef

1 year, 2 months ago

Selected Answer: A

A vulnerability ==> represents a flaw in a security that can be exploited, the risk ==> is the potential damage it might cause.

upvoted 1 times

...