CS0-003 · Question #329
CS0-003 Question #329: Real Exam Question with Answer & Explanation
The correct answer is B: A vulnerability that is related to a specific adversary campaign, with IoCs found in the SIEM. A vulnerability that is related to a specific adversary campaign, with IoCs found in the SIEM, should have the highest priority for the mitigation process. This is because it indicates that the vulnerability is actively being exploited by a known threat actor, and that the organi
Question
A vulnerability management team found four major vulnerabilities during an assessment and needs to provide a report for the proper prioritization for further mitigation. Which of the following vulnerabilities should have the highest priority for the mitigation process?
Options
- AA vulnerability that has related threats and IoCs, targeting a different industry
- BA vulnerability that is related to a specific adversary campaign, with IoCs found in the SIEM
- CA vulnerability that has no adversaries using it or associated IoCs
- DA vulnerability that is related to an isolated system, with no IoCs
Explanation
A vulnerability that is related to a specific adversary campaign, with IoCs found in the SIEM, should have the highest priority for the mitigation process. This is because it indicates that the vulnerability is actively being exploited by a known threat actor, and that the organization's security monitoring system has detected signs of compromise. This poses a high risk of data breach, service disruption, or other adverse impacts.
Topics
Community Discussion
No community discussion yet for this question.