Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

CompTIA Exam SY0-601 Topic 5 Question 81 Discussion

Actual exam question for CompTIA's SY0-601 exam
Question #: 81
Topic #: 5
[All SY0-601 Questions]

Which of the following is best to use when determining the severity of a vulnerability?

Show Suggested Answer Hide Answer
Suggested Answer: D

CVSS, or Common Vulnerability Scoring System, is a standard method for assessing the severity of software vulnerabilities based on various metrics and factors. CVE, or Common Vulnerabilities and Exposures, is a list of publicly disclosed vulnerabilities, but does not provide a severity score. OSINT, or Open Source Intelligence, is the collection and analysis of publicly available information, which may or may not be relevant to a specific vulnerability. SOAR, or Security Orchestration, Automation and Response, is a set of tools and processes that automate and streamline security operations and incident response.


Contribute your Thoughts:

Venita
6 months ago
Exactly! So, D) CVSS is the best for determining severity.
upvoted 0 times
...
Chery
6 months ago
Makes sense. CVE just lists vulnerabilities, right?
upvoted 0 times
...
Eve
7 months ago
Because CVSS specifically measures vulnerability severity.
upvoted 0 times
...
Celeste
7 months ago
Why CVSS?
upvoted 0 times
...
Eve
7 months ago
Yeah, I know. But I think it's D) CVSS.
upvoted 0 times
...
Chery
7 months ago
This question feels tricky. There's some good options.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77