nerdexam
(ISC)2

CISSP · Question #1058

Which of the following vulnerabilities can be BEST detected using automated analysis?

The correct answer is D. Typical source code vulnerabilities. Automated analysis tools (such as static analysis tools) are highly effective at identifying typical source code vulnerabilities, which often include issues like: Cross-site scripting (XSS) Buffer overflows Hard-coded credentials These are common coding mistakes or flaws that can

Submitted by viktor_hu· Mar 5, 2026Software Development Security

Question

Which of the following vulnerabilities can be BEST detected using automated analysis?

Options

  • AValid cross-site request forgery (CSRF) vulnerabilities
  • BMulti-step process attack vulnerabilities
  • CBusiness logic flaw vulnerabilities
  • DTypical source code vulnerabilities

How the community answered

(45 responses)
  • A
    4% (2)
  • B
    2% (1)
  • C
    11% (5)
  • D
    82% (37)

Explanation

Automated analysis tools (such as static analysis tools) are highly effective at identifying typical source code vulnerabilities, which often include issues like: Cross-site scripting (XSS) Buffer overflows Hard-coded credentials These are common coding mistakes or flaws that can be systematically identified by automated tools scanning the source code or compiled code for known patterns or vulnerabilities.

Topics

#automated security testing#SAST#source code analysis#vulnerability detection

Community Discussion

No community discussion yet for this question.

Full CISSP Practice