Certified Information Systems Security Professional (CISSP) — Question 350

Which of the following vulnerabilities can be BEST detected using automated analysis?

Answer options

• A. Multi-step process attack vulnerabilities
• B. Business logic flaw vulnerabilities
• C. Valid cross-site request forgery (CSRF) vulnerabilities
• D. Typical source code vulnerabilities

Correct answer: D

Explanation

Typical source code vulnerabilities are often well-defined and can be systematically scanned for using automated tools, making them easier to detect. In contrast, multi-step process attacks and business logic flaws may require more contextual understanding and human analysis, while valid CSRF vulnerabilities often rely on specific application behavior that is less straightforward to detect automatically.