CompTIA SecurityX (CAS-005) — Question 84

An organization wants to implement a platform to better identify which specific assets are affected by a given vulnerability. Which of the following components provides the best foundation to achieve this goal?

Answer options

• A. SASE
• B. CMDB
• C. SBoM
• D. SIEM

Correct answer: B

Explanation

The CMDB (Configuration Management Database) is designed to keep track of the organization's assets and their configurations, making it the best choice for identifying which specific assets are impacted by vulnerabilities. In contrast, SASE focuses on secure access, SBoM provides a list of components in software, and SIEM is primarily concerned with security event management, none of which directly address the asset identification related to vulnerabilities.