New Release: Earn Rewards by referring new users! You can earn rewards redeemable for discounts on Vouchers and Memberships!

Free CompTIA CySA+ CS0-003 Practice Question

During a routine vulnerability assessment, a scanner reports a high-severity flaw on a networked server indicating weak authentication allowing potential unauthorized access. Further manual verification reveals that the server is configured with a public-key infrastructure for all user access, negating the use of passwords. How should this finding from the vulnerability scanner be classified?

  • This finding is accurate and points to an actual vulnerability because the scanner identified it as high-severity, regardless of the authentication method in place.

  • It indicates a need for reconfiguration of the scanning tool to avoid such high-severity, misleading alerts in the future.

  • The report should be considered a true positive, implying an immediate requirement for security enhancement on the server.

  • This is a false positive as the existing strong authentication mechanism is not taken into account by the automated scan.

This question's topic:
CompTIA CySA+ CS0-003 / 
Vulnerability Management
Your Score:

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Pass using Crucial? Post on Social Media and get a $15 Account Credit! Rules apply. Hide these
SAVE $49
CompTIA Cybersecurity Analyst Voucher (CySA+ CS0-003)
$404.00 $355.00