CompTIA CySA+ (CS0-003) — Question 194

Each time a vulnerability assessment team shares the regular report with other teams, inconsistencies regarding versions and patches in the existing infrastructure are discovered. Which of the following is the best solution to decrease the inconsistencies?

Answer options

• A. Implementing credentialed scanning
• B. Changing from a passive to an active scanning approach
• C. Implementing a central place to manage IT assets
• D. Performing agentless scanning

Correct answer: C

Explanation

Implementing a central place to manage IT assets ensures that all teams have access to the same, up-to-date information regarding versions and patches, thereby minimizing inconsistencies. The other options, while beneficial in various contexts, do not specifically address the root issue of disparate data sources leading to inconsistencies.