CompTIA CASP+ (CAS-003) — Question 130

A networking administrator was recently promoted to security administrator in an organization that handles highly sensitive data. The Chief Information Security
Officer (CISO) has just asked for all IT security personnel to review a zero-day vulnerability and exploit for specific application servers to help mitigate the organization's exposure to that risk. Which of the following should the new security administrator review to gain more information? (Choose three.)

Answer options

• A. CVE database
• B. Recent security industry conferences
• C. Security vendor pages
• D. Known vendor threat models
• E. Secure routing metrics
• F. Server's vendor documentation
• G. Verified security forums
• H. NetFlow analytics

Correct answer: A, C, G

Explanation

The CVE database provides detailed information on known vulnerabilities, making it essential for understanding zero-day risks. Security vendor pages often contain relevant advisories and updates regarding vulnerabilities, while verified security forums can provide insights from the community and expert discussions on the topic. The other options, while potentially useful, do not directly address the need for specific vulnerability information.