Exam CS0-003 Topic 1 Question 220 Discussion
Actual exam question for CompTIA's CS0-003 exam
Question #: 220
Topic #: 1
Question #: 220
Topic #: 1
A security analyst must assist the IT department with creating a phased plan for vulnerability patching that meets established SLAs.
Which of the following vulnerability management elements will best assist with prioritizing a successful plan?
Which of the following vulnerability management elements will best assist with prioritizing a successful plan?
Suggested Answer: B Vote an answer
Comprehensive and Detailed Explanation:
Risk scoring is the best method for prioritizing patching, as it considers factors like CVSS severity, exploitability, asset criticality, and business impact.
* Option A (Affected hosts) is relevant but does not determine priority without a risk assessment.
* Option C (Mitigation strategy) is useful but focuses on alternative protections rather than prioritization.
* Option D (Annual recurrence) is not a standard method for vulnerability prioritization.
Thus, B is the correct answer, as risk scores allow organizations to prioritize patching efforts effectively.
Risk scoring is the best method for prioritizing patching, as it considers factors like CVSS severity, exploitability, asset criticality, and business impact.
* Option A (Affected hosts) is relevant but does not determine priority without a risk assessment.
* Option C (Mitigation strategy) is useful but focuses on alternative protections rather than prioritization.
* Option D (Annual recurrence) is not a standard method for vulnerability prioritization.
Thus, B is the correct answer, as risk scores allow organizations to prioritize patching efforts effectively.
by Eden at Apr 02, 2025, 10:00 AM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).