CompTIA CySA+ (CS0-003) — Question 135

A security analyst is working on a server patch management policy that will allow the infrastructure team to be informed more quickly about new patches. Which of the following would most likely be required by the infrastructure team so that vulnerabilities can be remediated quickly? (Choose two.)

Answer options

• A. Hostname
• B. Missing KPI
• C. CVE details
• D. POC availabilty
• E. IoCs
• F. npm identifier

Correct answer: A, C

Explanation

The infrastructure team needs the Hostname to identify the affected systems and the CVE details to understand the specific vulnerabilities. The other options, such as Missing KPI, POC availability, IoCs, and npm identifier, do not provide the necessary information for quick remediation of vulnerabilities.