CompTIA CySA+ (CS0-002) — Question 189

During a review of vulnerability scan results, an analyst determines the results may be flawed because a control-baseline system, which is used to evaluate a scanning tool’s effectiveness, was reported as not vulnerable. Consequently, the analyst verifies the scope of the scan included the control-baseline host, which was available on the network during the scan. The use of a control-baseline endpoint in this scenario assists the analyst in confirming:

Answer options

• A. verification of mitigation.
• B. false positives.
• C. false negatives.
• D. the criticality index.
• E. hardening validation.

Correct answer: C

Explanation

The correct answer is C, as the control-baseline helps in identifying false negatives — instances where vulnerabilities are present but not detected by the scan. Options A and E do not directly relate to the effectiveness of the scanning tool in identifying vulnerabilities. Options B and D are also not relevant to the scenario described.