CompTIA PenTest+ (PT0-002) — Question 132

A penetration tester has identified several newly released CVEs on a VoIP call manager. The scanning tool the tester used determined the possible presence of the CVEs based off the number of the service. Which of the following methods would BEST support validation of the possible findings?

Answer options

• A. Manually check the version number of the VoIP service against the CVE release.
• B. Test with proof-of-concept code from an exploit database on a non-production system.
• C. Review SIP traffic from an on-path position to look for indicators of compromise.
• D. Execute an nmap -sV scan against the service.

Correct answer: A

Explanation

The correct answer is A because manually checking the version number directly against the CVE release provides definitive validation of the vulnerability. Option B, while useful for testing, does not confirm version vulnerability directly. Option C focuses on traffic analysis, which may not definitively indicate the presence of the CVE. Option D is a scanning technique and may not provide the specific version confirmation needed.