CompTIA CASP+ (CAS-003) — Question 238

A systems administrator recently conducted a vulnerability scan of the intranet. Subsequently, the organization was successfully attacked by an adversary. Which of the following is the MOST likely explanation for why the organization's network was compromised?

Answer options

• A. There was a false positive since the network was fully patched
• B. The systems administrator did not perform a full system scan
• C. The systems administrator performed a credentialed scan
• D. The vulnerability database was not updated

Correct answer: C

Explanation

The correct answer is C because a credentialed scan allows for deeper insights into vulnerabilities that may not be visible through a non-credentialed scan. Options A and B are incorrect as a fully patched network should not have false positives, and a lack of a full system scan would not guarantee a successful attack if vulnerabilities were identified. Option D is also incorrect because even if the database was outdated, the credentialed scan would still provide valuable information on existing vulnerabilities.