CompTIA Security+ (SY0-501) — Question 593

While testing a new vulnerability scanner, a technician becomes concerned about reports that list security concerns that are not present on the systems being tested. Which of the following BEST describes this flaw?

Answer options

• A. False positives
• B. Crossover error rate
• C. Uncredentialed scan
• D. Passive security controls

Correct answer: A

Explanation

The correct answer is 'False positives' because it refers to instances where the scanner incorrectly identifies security vulnerabilities that are not present. The other options do not accurately describe this situation: 'Crossover error rate' relates to the performance of biometric systems, 'Uncredentialed scan' refers to scans conducted without authentication, and 'Passive security controls' are measures that do not actively prevent attacks.