CompTIA Exam CS0-001 Topic 16 Question 10 Discussion

Actual exam question for CompTIA's CS0-001 exam

Question #: 10
Topic #: 16

A security analyst must perform quarterly vulnerability scans to keep the organization In compliance with PCI regulations. The analyst has scheduled the scans to occur early on Monday mornings and uses Nexpose on 192.168.65.32 to run scans on the entire network. The morning after the scan was run. the analyst received the following alert from the network-based IDS system:

Which of the following would be the BEST way to address this alert while remaining in compliance with PCI regulations?

ACreate a firewall rule restricting traffic from 192.168.65.32 to the 192.168.70 network.

BIsolate 192.168.65.32 and begin Incident response procedures on the device.

CDisable any services that are vulnerable to XXE attacks on the destination servers.

DValidate that the alert is a false positive triggered by the scanning process.

Show Suggested Answer

Suggested Answer: A

by Tamar at May 03, 2022, 09:27 PM

Limited Time Offer

25%

Off

Get Premium CS0-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!