CompTIA Security+ (SY0-501) — Question 818

An analyst is using a vulnerability scanner to look for common security misconfigurations on devices.
Which of the following might be identified by the scanner? (Choose two.)

Answer options

• A. The firewall is disabled on workstations.
• B. SSH is enabled on servers.
• C. Browser homepages have not been customized.
• D. Default administrator credentials exist on networking hardware.
• E. The OS is only set to check for updates once a day.

Correct answer: A, E

Explanation

The correct answers are A and E because a disabled firewall on workstations exposes them to threats, and infrequent update checks can leave them vulnerable to known exploits. Options B, C, and D do not represent critical misconfigurations that would typically be flagged by a vulnerability scanner focused on security issues.