CompTIA CASP+ (CAS-004) — Question 473

A security engineer is performing a vulnerability management scan on multihomed Linux systems. The engineer notices that the vulnerability count is high due to the fact that each vulnerability is multiplied by the number of NICs on each system. Which of the following should the engineer do to deduplicate the vulnerabilities and to associate the vulnerabilities with a particular host?

Answer options

• A. Use a SCAP scanner.
• B. Deploy an agent.
• C. Initiate a discovery scan.
• D. Perform an Nmap scan.

Correct answer: B

Explanation

Installing an agent on the systems allows for accurate reporting of vulnerabilities associated with each host, avoiding the duplication caused by multiple NICs. Other options like using a SCAP scanner or performing discovery scans do not provide the necessary granularity for deduplication, while Nmap scans are primarily used for network discovery rather than vulnerability management.