CompTIA SecurityX (CAS-005) — Question 48

A security engineer is performing a vulnerability management scan on multihomed Linux systems. The engineer notices that the vulnerability count is high due to the fact that each vulnerability is multiplied by the number of NICs on each system. Which of the following should the engineer do to deduplicate the vulnerabilities and to associate the vulnerabilities with a particular host?

Answer options

• A. Use a SCAP scanner.
• B. Deploy an agent.
• C. Initiate a discovery scan.
• D. Perform an Nmap scan.

Correct answer: B

Explanation

Deploying an agent allows for more accurate vulnerability reporting by consolidating results at the host level, thus eliminating duplicates based on multiple NICs. In contrast, a SCAP scanner may not provide the same level of detail in deduplication, a discovery scan focuses on identifying devices rather than vulnerabilities, and an Nmap scan is primarily used for network mapping rather than vulnerability management.