CompTIA CySA+ CS0-003 Practice Question

Your organization utilizes a proprietary system for its critical operations. During a routine vulnerability scan, you discover that this system has several security weaknesses. However, any changes to the system require a development cycle from the vendor. What kind of inhibitors to remediation should you include in your vulnerability management report to accurately communicate the challenges to stakeholders?

  • Affected hosts can be remediated by the application of immediate compensating controls without contacting the vendor.

  • Proprietary systems may have vendor-specific development cycles that delay immediate remediation.

  • Since it's proprietary technology, no vulnerabilities should be reported until the vendor confirms them.

  • Legacy systems often represent a risk, but proprietary systems do not need to be included in vulnerability reports.

CompTIA CySA+ CS0-003
Reporting and Communication
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Bash, the Crucial Exams Chat Bot
AI Bot