NSE 6 – FortiWeb 6.1 — Question 17

Which two statements about running a vulnerability scan are true? (Choose two.)

Answer options

• A. You should run the vulnerability scan during a maintenance window.
• B. You should run the vulnerability scan in a test environment.
• C. Vulnerability scanning increases the load on FortiWeb, so it should be avoided.
• D. You should run the vulnerability scan on a live website to get accurate results.

Correct answer: A, B

Explanation

Options A and B are correct because running a vulnerability scan during a maintenance window and in a test environment helps to avoid disruptions and ensures a controlled assessment. Option C is incorrect as while vulnerability scans can increase load, they are necessary for security assessments. Option D is also incorrect because scans on live websites can cause issues and testing environments provide a safe space for evaluation.