CompTIA CySA+ CS0-003 Practice Question
When reviewing the latest vulnerability assessment report, you notice the previously identified and critical SQL injection vulnerability in one of your web applications is no longer listed. Prior to this assessment, there were no changes to the application's code, and no patches have been deployed. Considering this scenario, what is the MOST likely explanation?
The scanner experienced a false negative, failing to detect the existing vulnerability.
The application code has self-corrected due to adaptive security algorithms.
The vulnerability was a false positive in previous reports and has been correctly omitted now.
The development team silently patched the vulnerability without documentation.