A penetration tester finished a security scan and uncovered numerous vulnerabilities on several hosts. Based on the targets' EPSS and CVSS scores, which of the following targets is the most likely to get attacked?
A.
Target 1: EPSS Score = 0.6 and CVSS Score = 4
B.
Target 2: EPSS Score = 0.3 and CVSS Score = 2
C.
Target 3: EPSS Score = 0.6 and CVSS Score = 1
D.
Target 4: EPSS Score = 0.4 and CVSS Score = 4.5
The EPSS (Exploit Prediction Scoring System) score indicates the likelihood of a vulnerability being exploited in the wild, while the CVSS (Common Vulnerability Scoring System) score measures the severity of the vulnerability. When prioritizing targets, a higher EPSS score is more indicative of the likelihood of exploitation, while the CVSS score provides insight into the potential impact of the vulnerability.
Target 1 has the highest EPSS score (0.6), meaning it is the most likely to be exploited. Although its CVSS score is moderate (4), the combination of a high EPSS score and a reasonable CVSS score makes it the most likely target for attackers.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.PT0-003 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
PhillyCheese
2 weeks, 6 days ago