CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA CySA+ CS0-003 Practice Question

Your organization utilizes a proprietary system for its critical operations. During a routine vulnerability scan, you discover that this system has several security weaknesses. However, any changes to the system require a development cycle from the vendor. What kind of inhibitors to remediation should you include in your vulnerability management report to accurately communicate the challenges to stakeholders?

  • Since it's proprietary technology, no vulnerabilities should be reported until the vendor confirms them.

  • Legacy systems often represent a risk, but proprietary systems do not need to be included in vulnerability reports.

  • Affected hosts can be remediated by the application of immediate compensating controls without contacting the vendor.

  • Proprietary systems may have vendor-specific development cycles that delay immediate remediation.

This question is for objective:
Reporting and Communication
Your Score:
Reporting and Communication
Security Operations
Vulnerability Management
Incident Response and Management