CompTIA CySA+ (CS0-003) — Question 111

A vulnerability management team found four major vulnerabilities during an assessment and needs to provide a report for the proper prioritization for further mitigation. Which of the following vulnerabilities should have the highest priority for the mitigation process?

Answer options

• A. A vulnerability that has related threats and IoCs, targeting a different industry
• B. A vulnerability that is related to a specific adversary campaign, with IoCs found in the SIEM
• C. A vulnerability that has no adversaries using it or associated IoCs
• D. A vulnerability that is related to an isolated system, with no IoCs

Correct answer: B

Explanation

The correct answer is B because a vulnerability related to a specific adversary campaign indicates an active threat that requires immediate attention, especially with Indicators of Compromise (IoCs) found in the SIEM. Options A, C, and D involve vulnerabilities that are either targeting different industries or have no active threats, making them less urgent for mitigation.