CompTIA CySA+ (CS0-002) — Question 231

A monthly job to install approved vendor software updates and hot fixes recently stopped working. The security team performed a vulnerability scan, which identified several hosts as having some critical OS vulnerabilities, as referenced in the common vulnerabilities and exposures (CVE) database. Which of the following should the security team do next to resolve the critical findings in the most effective manner? (Choose two.)

Answer options

• A. Patch the required hosts with the correct updates and hot fixes, and rescan them for vulnerabilities.
• B. Remove the servers reported to have high and medium vulnerabilities.
• C. Tag the computers with critical findings as a business risk acceptance.
• D. Manually patch the computers on the network, as recommended on the CVE website.
• E. Harden the hosts on the network, as recommended by the NIST framework.
• F. Resolve the monthly job issues and test them before applying them to the production network.

Correct answer: A, F

Explanation

The correct actions are to patch the hosts with the necessary updates and hot fixes, as this directly addresses the vulnerabilities found. Additionally, resolving the monthly job issues ensures that the update process can function correctly going forward. The other options either do not directly resolve the vulnerabilities or involve unnecessary actions such as removing servers or accepting risks without remediation.