After conducting a vulnerability scan, a systems administrator notices that one of the identified vulnerabilities is not present on the systems that were scanned. Which of the following describes this example?
This one is a false negative. Why? A known vulnerability has been found but the scanner failed to see it. False Positive means the scanner incorrectly identified a vulnerability
The correct answer is:
A. False positive
Explanation:
A false positive occurs when a security system incorrectly flags a vulnerability or threat that does not actually exist on the system. In this case, the vulnerability scan reported an issue, but upon further investigation, the administrator confirmed that the vulnerability is not present.
Why not the other options?
B. False negative – This would mean a vulnerability is present but was not detected, which is the opposite of what happened here.
C. True positive – This would mean the vulnerability was correctly identified and is actually present on the system.
D. True negative – This would mean the system was correctly identified as not having the vulnerability, but in this case, the scan incorrectly reported it.
False Positive - Normal or expected activity is incorrectly identified as abnormal or unexpected. False Negative - Abnormal or unexpected activity is incorrectly identified as normal or expected. Therefore, B is the correct answer.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
mejestique
1 week, 4 days agotomahawk117
2 weeks, 6 days agotest_arrow
3 weeks, 5 days agoTmNvrWts
1 month agoijia_Ai0823
1 month, 2 weeks agorrynzon
6 months agojafyyy
6 months, 3 weeks agoqacollin
7 months, 1 week ago