Free CompTIA CySA+ CS0-003 Practice Question

In determining which security weaknesses to address first, reliance on a singular numerical severity rating should be the primary method in all situations.

  • False, because vulnerability prioritization also involves the evaluation of context, asset value, impact, and exploitability along with other environmental specifics.

  • True, because the numerical rating is designed to universally reflect the severity of weaknesses.

This question's topic:
CompTIA CySA+ CS0-003 / 
Vulnerability Management
Your Score:

Check or uncheck an objective to set which questions you will receive.