CompTIA Network+ (N10-008) — Question 578

A network administrator wants to know which systems on the network are at risk of a known vulnerability. Which of the following should the administrator reference?

Answer options

• A. SLA
• B. Patch management policy
• C. NDA
• D. Site survey report
• E. CVE

Correct answer: E

Explanation

The CVE (Common Vulnerabilities and Exposures) database provides a list of known vulnerabilities, making it the best reference for identifying systems at risk. The other options, such as SLA, NDA, and site survey reports, do not specifically address vulnerabilities, while a patch management policy focuses on updates rather than identifying existing risks.