312-49 · Question #403
312-49 Question #403: Real Exam Question with Answer & Explanation
The correct answer is A: False negatives. A false negative occurs when a security tool fails to detect a real vulnerability or threat that actually exists. Jim's scanner reported the five vulnerabilities as 'not exploitable' (negative result), but the exploit tool proved they were real — meaning the scanner was wrong i
Question
Jim performed a vulnerability analysis on his network and found no potential problems. He runs another utility that executes exploits against his system to verify the results of the vulnerability test. The second utility executes five known exploits against his network in which the vulnerability analysis said were not exploitable. What kind of results did Jim receive from his vulnerability analysis?
Options
- AFalse negatives
- BTrue negatives
- CTrue positives
- DFalse positives
Explanation
A false negative occurs when a security tool fails to detect a real vulnerability or threat that actually exists. Jim's scanner reported the five vulnerabilities as 'not exploitable' (negative result), but the exploit tool proved they were real — meaning the scanner was wrong in the negative direction. A false positive (D) would be the opposite: the scanner flags something as vulnerable when it is not. True negatives (B) would be correctly identified non-issues; true positives (C) would be correctly identified real vulnerabilities.
Topics
Community Discussion
No community discussion yet for this question.