A. CVSS (Common Vulnerability Scoring System)
Explanation:
✔ CVSS provides a standardized scoring system to evaluate the severity of vulnerabilities, helping organizations prioritize which patches to apply based on risk and impact.
✔ CVSS scores consider factors like exploitability, impact, and ease of remediation, making it a useful tool for prioritizing patch applications.
Why not the other options?
B. SCAP (Security Content Automation Protocol) – SCAP is a set of standards for automating vulnerability management, but CVSS is the specific tool for prioritizing based on severity.
C. OSINT (Open Source Intelligence) – While OSINT can provide useful information about vulnerabilities and threats, it does not specifically prioritize patches.
D. CVE (Common Vulnerabilities and Exposures) – CVEs provide unique identifiers for vulnerabilities, but they don’t include the severity scoring that helps prioritize patching.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.SY0-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
test_arrow
2 months, 1 week ago