CompTIA Security+ (SY0-701) — Question 555

A CVE in a key back-end component of an application has been disclosed. The systems administrator is identifying all of the systems in the environment that are susceptible to this risk. Which of the following should the systems administrator perform?

Answer options

• A. Packet capture
• B. Vulnerability scan
• C. Metadata analysis
• D. Automated reporting

Correct answer: B

Explanation

The correct answer is B, as a vulnerability scan specifically identifies systems that have known vulnerabilities, allowing the administrator to pinpoint affected systems. Packet capture is primarily used for network traffic analysis, metadata analysis focuses on data characteristics, and automated reporting does not directly assess vulnerabilities.