CS0-003 Question #438: Real Exam Question with Answer & Explanation

Submitted by wei.xz· Mar 6, 2026CompTIA Security+ Domain 4: Operations and Incident Response - specifically vulnerability scanning interpretation, remediation prioritization based on organizational policy, and selection of appropriate mitigations aligned to identified weaknesses.

Question

SIMULATION A systems administrator is reviewing the output of a vulnerability scan. INSTRUCTIONS Review the information in each tab. Based on the organization's environment architecture and remediation standards, select the server to be patched within 14 days and select the appropriate technique and mitigation. Answer:

Options

taskSelect the server to be patched within 14 days and select the appropriate technique and mitigation.
prerequisites

Explanation

Server 192.168.60.5 is selected because it hosts an internet-facing application with a critical vulnerability tied to authentication weaknesses, which under the organization's remediation standards requires patching within 14 days (as opposed to 30 days for moderate or lower-severity findings on internal systems). Implementing MFA on the application is the correct mitigation because the vulnerability scan identified a missing or weak authentication control, and adding Multi-Factor Authentication directly addresses the attack vector - reducing the risk of unauthorized access even if credentials are compromised. This technique aligns with the organization's remediation standards by pairing a compensating control with the patch timeline rather than simply waiting for a vendor patch.

Topics

#Vulnerability Management#Remediation Prioritization#Multi-Factor Authentication#Risk-Based Patching

Community Discussion

No community discussion yet for this question.

Full CS0-003 Practice Browse All CS0-003 Questions