Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam

Exam CS0-003 topic 1 question 60 discussion

Actual exam question from CompTIA's CS0-003

Question #: 60
Topic #: 1

A vulnerability management team is unable to patch all vulnerabilities found during their weekly scans. Using the third-party scoring system described below, the team patches the most urgent vulnerabilities: c

Additionally, the vulnerability management team feels that the metrics Smear and Channing are less important than the others, so these will be lower in priority. Which of the following vulnerabilities should be patched first, given the above third-party scoring system?

A. InLoud:

Cobain: Yes -

Grohl: No -

Novo: Yes -

Smear: Yes -
Channing: No
B. TSpirit:

Cobain: Yes -

Grohl: Yes -

Novo: Yes -

Smear: No -
Channing: No
C. ENameless:

Cobain: Yes -

Grohl: No -

Novo: Yes -

Smear: No -
Channing: No
D. PBleach:

Cobain: Yes -

Grohl: No -

Novo: No -

Smear: No -
Channing: Yes

Show Suggested Answer

Suggested Answer: B 🗳️

by kmordalv at Sept. 8, 2023, 9:16 a.m.

Comments

Submit Cancel

Ballin91

Highly Voted 1 year ago

The questions on this exam so horribly worded

upvoted 17 times

...

kmordalv

Highly Voted 1 year, 8 months ago

Selected Answer: B

The metrics Cobain, Grohl, and Novo are more important than Smear and Channing, according to the vulnerability management team. Therefore, this vulnerability poses a greater risk than the other vulnerabilities and should be patched first.

upvoted 8 times

[Removed]

1 year, 7 months ago

I agree, it is also the only one that have all key metrics active.

upvoted 6 times

...

CPTMORGAN98

Most Recent 5 months ago

Selected Answer: B

I wrote out all of the options then went back to the main menu and after looking at the them B made that most sense, seeing how all of them were open it was the one that needed to be patched first.

upvoted 1 times

...

hashed_pony

6 months, 2 weeks ago

I got an aneurysm trying to understand this question.

upvoted 7 times

...

Serac

6 months, 4 weeks ago

Selected Answer: B

At most 3 activated metrics from 5 totals. A and B. Since B has all 3 “main” metrics, while A has 2 mains and 1 of lesser priority. That left B as the most sensible answer.

upvoted 1 times

...

KingCyber

11 months, 3 weeks ago

B because of Cobain: Yes and Grohl: Yes

upvoted 1 times

...

deeden

1 year, 5 months ago

Selected Answer: B

I vote B because the last two are less priority and external facing servers have large attack surface - should always be hardened. The remaining two servers appear to be in high or critical severity vulnerability status.

upvoted 3 times

...

581777a

1 year, 6 months ago

Selected Answer: C

I'm going to say it's C, I work with vulnerabilities and an external facing one is significantly reduced threat. So, since it says the urgent ones need to be patched. I think it is C.

upvoted 1 times

Perryperry

1 year, 3 months ago

How in the world do you work with vulnerabilities, if you don't know consider an external facing factor a bigger threat?

upvoted 6 times

...

daddylonglegs

1 year, 3 months ago

I work with vulnerabilities too... a vulnerability in an external facing asset is absolutely not a 'significantly reduced threat', quite the opposite in fact. The answer is B

upvoted 3 times

...

[Removed]

1 year, 6 months ago

I believe you're wrong. External facing are the worst ones to have, assuming that means accessible over the internet. Public PoCs are also bad because that means its either a github search away or a module already loaded into msfconsole. It's definitely B.

upvoted 12 times

...

Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam

Exam CS0-003 topic 1 question 60 discussion

Comments

Ballin91

kmordalv

[Removed]

CPTMORGAN98

hashed_pony

Serac

KingCyber

deeden

581777a

Perryperry

daddylonglegs

[Removed]

SY0-701