CiscoCisco
200-201 · Question #533
200-201 Question #533: Real Exam Question with Answer & Explanation
The correct answer is A: Updating the OS reduces the attack surface, and installing separate optional patches remediates. Updating the operating system reduces the overall attack surface by removing exposed or unnecessary components, while applying specific patches directly fixes individual vulnerabilities that could otherwise be exploited.
Submitted by alyssa_d· Mar 6, 2026Security Concepts
Question
What describes the difference when comparing attack surface and vulnerability in practice?
Options
- AUpdating the OS reduces the attack surface, and installing separate optional patches remediates
- BPatching SMB vulnerability is an attack surface reduction, and the open unused ports are the
- CA SMB server that can allow remote code execution is a vulnerability, and closing port 139 is an
- DThe attack surface is the SQL injection targeted on the database, and the database tables are the
Explanation
Updating the operating system reduces the overall attack surface by removing exposed or unnecessary components, while applying specific patches directly fixes individual vulnerabilities that could otherwise be exploited.
Topics
#Attack surface#Vulnerability#Patch management#Remediation
Community Discussion
No community discussion yet for this question.