CompTIA CySA+ (CS0-003) — Question 203

A security analyst needs to identify a computer based on the following requirements to be mitigated:

• The attack method is network based with low complexity.
• No privileges or user action is needed.
• The confidentiality and availability level is high with a low integrity level.

Given the following CVSS 3.1 output:

Computer1 -
CVSS3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:H

Computer2 -
CVSS3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H

Computer3 -
CVSS3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:H

Computer4 -
CVSS3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H

Which of the following machines should the analyst mitigate?

Answer options

• A. Computer1
• B. Computer2
• C. Computer3
• D. Computer4

Correct answer: D

Explanation

The correct answer is Computer4 because it meets all the specified requirements: it has a network attack vector, low complexity, requires no privileges or user interaction, and has high confidentiality and availability with low integrity. Computer1 and Computer3 do not fit due to their user interaction requirement and high complexity, respectively, while Computer2 has a low attack vector that doesn't align with the network-based requirement.