CS0-003 Exam Dumps | A security analyst is developing a script to filter firewall vulnerabilities. The script will impact

<< Prev Question Next Question >>

Question 68/265

A security analyst is developing a script to filter firewall vulnerabilities. The script will impact the integrity of data hosted on devices connected to networks. Which of the following is a CVSS v4.0 that the analyst can use to test a true positive for the script?

A. AV:L/AC:H/AT:N/PR:L/VI:H/VC:H/VA:H/SC:N/SI:N/SA:N

B. AV:N/AC:L/AT:N/PR:N/VI:N/VC:N/VA:N/SC:N/SI:H/SA:L

C. AV:P/AC:L/AT:N/PR:H/VI:L/VC:L/VA:L/SC:N/SI:N/SA:N

D. AV:A/AC:L/AT:N/PR:H/VI:N/VC:L/VA:L/SC:N/SI:N/SA:H

Question List (265q): Question 1: A security analyst needs to ensure that systems across the o...; 1 commentQuestion 2: An analyst is reviewing system logs while threat hunting: (E...; Question 3: A security analyst at example.com receives SIEM alert for an...; Question 4: During a recent site survey. an analyst discovered a rogue w...; Question 5: An analyst is designing a message system for a bank. The ana...; Question 6: Based on an internal assessment, a vulnerability management ...; Question 7: A SOC analyst determined that a significant number of the re...; Question 8: A SOC team lead occasionally collects some DNS information f...; Question 9: A SOC manager is establishing a reporting process to manage ...; Question 10: A security analyst is validating a particular finding that w...; Question 11: A security analyst was transferred to an organization's thre...; Question 12: Which of the following statements best describes the MITRE A...; Question 13: An analyst reviews the following web server log entries: %2E...; Question 14: A company received a shipment of new network switches. Immed...; Question 15: A systems administrator needs to gather security events with...; Question 16: An organization's internal department frequently uses a clou...; Question 17: Which of the following will most likely cause severe issues ...; Question 18: During the triage of a SIEM alarm, a security analyst identi...; Question 19: A security analyst is trying to identify possible network ad...; Question 20: Which of the following best describes the threat concept in ...; Question 21: A systems administrator receives reports of an internet-acce...; Question 22: Which of the following is the best way to begin preparation ...; Question 23: An analyst is reviewing the following output as part of an i...; Question 24: An incident response team detected malicious software that c...; Question 25: A user reports a message as suspicious to the IT security te...; Question 26: Which of the following concepts is using an API to insert bu...; Question 27: A system that provides the user interface for a critical ser...; Question 28: Which of following would best mitigate the effects of a new ...; Question 29: A security analyst received an alert regarding multiple succ...; Question 30: Which of the following best describes the key goal of the co...; Question 31: A team of analysts is developing a new internal system that ...; Question 32: Which of the following would most likely be used to update a...; Question 33: A security analyst is concerned the number of security incid...; Question 34: An analyst is conducting monitoring against an authorized te...; Question 35: Which of the following would a security analyst most likely ...; Question 36: A Chief Finance Officer receives an email from someone who i...; Question 37: After completing a review of network activity, the threat hu...; Question 38: A red team engineer discovers that analyzing multiple pieces...; Question 39: A security administrator has found indications of dictionary...; Question 40: A security analyst reviews the following results of a Nikto ...; Question 41: A security analyst identified the following suspicious entry...; Question 42: After examining a header and footer file, a security analyst...; Question 43: Which Of the following techniques would be best to provide t...; Question 44: Which of the following best explains the importance of the i...; Question 45: A security analyst is reviewing the findings of the latest v...; Question 46: An analyst recommends that an EDR agent collect the source I...; Question 47: The most recent vulnerability scan results show the followin...; Question 48: An organization wants to ensure the privacy of the data that...; Question 49: Which of the following is the best metric for an organizatio...; Question 50: After identifying a threat, a company has decided to impleme...; Question 51: Which of the following best describes the goal of a tabletop...; Question 52: A cyber-security analyst is implementing a new network confi...; Question 53: During routine monitoring a security analyst identified the ...; Question 54: Which of the following is the best authentication method to ...; Question 55: Which of the following entities should an incident manager w...; Question 56: Which of the following is a KPI that is used to monitor or r...; Question 57: A security analyst is writing a shell script to identify IP ...; Question 58: A security analyst scans a host and generates the following ...; Question 59: A threat intelligence analyst is updating a document accordi...; Question 60: A vulnerability scan shows the following issues: (Exhibit) A...; Question 61: A security analyst needs to provide evidence of regular vuln...; Question 62: An analyst is reviewing a vulnerability report for a server ...; Question 63: A security analyst has identified a new malware file that ha...; Question 64: While monitoring the information security notification mailb...; Question 65: A security analyst detects an exploit attempt containing the...; Question 66: Which of the following is the best reason to implement an MO...; Question 67: A software developer is correcting the error-handling capabi...; Question 68: A security analyst is developing a script to filter firewall...; Question 69: A security analyst observed the following activities in chro...; Question 70: A security analyst has prepared a vulnerability scan that co...; Question 71: An organization was compromised, and the usernames and passw...; Question 72: Which of the following is MOST important when developing a t...; Question 73: A company that has a geographically diverse workforce and dy...; Question 74: A malicious actor has gained access to an internal network b...; Question 75: Which of the following are the MOST likely reasons lo includ...; Question 76: A corporation wants to implement an agent-based endpoint sol...; Question 77: Several vulnerability scan reports have indicated runtime er...; Question 78: An analyst is examining events in multiple systems but is ha...; Question 79: SIMULATION A company recently experienced a security inciden...; Question 80: An analyst finds that duplicate entries may exist in the ass...; Question 81: Which of the following is the best technical method to prote...; Question 82: A company wants to configure the environment to allow passiv...; Question 83: The security operations team is required to consolidate seve...; Question 84: A developer is working on a program to convert user-generate...; Question 85: An organization wants to establish a disaster recovery plan ...; Question 86: An analyst notices there is an internal device sending HTTPS...; Question 87: A vulnerability scanner has identified an out-of-support dat...; Question 88: Which of the following explains why a company would consider...; Question 89: A security learn implemented a SCM as part for its security-...; Question 90: An analyst is evaluating the following vulnerability report:...; Question 91: A threat hunter seeks to identify new persistence mechanisms...; Question 92: An analyst is suddenly unable to enrich data from the firewa...; Question 93: Which of the following is best suited for determining the me...; Question 94: A leader on the vulnerability management team is trying to r...; Question 95: An incident response team found IoCs in a critical server. T...; Question 96: An analyst receives threat intelligence regarding potential ...; Question 97: A security analyst needs to secure digital evidence related ...; Question 98: A security analyst is reviewing a firewall usage report that...; Question 99: An organization needs to bring in data collection and aggreg...; Question 100: The management team requests monthly KPI reports on the comp...; Question 101: A security analyst reviews the following output: (Exhibit) W...; Question 102: During an incident, an analyst needs to acquire evidence for...; Question 103: A security analyst has identified outgoing network traffic l...; Question 104: A new zero-day vulnerability was released. A security analys...; Question 105: A security manager has decided to form a special group of an...; Question 106: The SOC team reestablishes user access after a threat actor ...; Question 107: A cybersecurity analyst is setting up a security control tha...; Question 108: A security analyst is tasked with prioritizing vulnerabiliti...; Question 109: A security analyst is working on a server patch management p...; Question 110: A security analyst is improving an organization's vulnerabil...; Question 111: Which of the following would an organization use to develop ...; Question 112: A security analyst receives an alert for suspicious activity...; Question 113: Company A is in the process of merging with Company B. As pa...; Question 114: A security analyst detected the following suspicious activit...; Question 115: Which of the following best describes the key elements of a ...; Question 116: After a security assessment was done by a third-party consul...; Question 117: After several tabletop exercises, the cybersecurity team is ...; Question 118: Which of the following threat-hunting concepts is most conce...; Question 119: While implementing a PKI for a company, a security analyst p...; Question 120: The vulnerability analyst reviews threat intelligence regard...; Question 121: A security analyst is performing vulnerability scans on the ...; Question 122: K company has recently experienced a security breach via a p...; Question 123: A security analyst observed the following activity from a pr...; Question 124: During a security test, a security analyst found a critical ...; Question 125: Which of the following threat actors is most likely to targe...; Question 126: During a cybersecurity incident, one of the web servers at t...; Question 127: A security analyst is reviewing a packet capture in Wireshar...; Question 128: An IT security analyst has received an email alert regarding...; Question 129: A security analyst needs to prioritize vulnerabilities for p...; Question 130: A security audit for unsecured network services was conducte...; Question 131: Which of the following features is a key component of Zero T...; Question 132: Which of the following security operations tasks are ideal f...; Question 133: An organization has implemented code into a production envir...; Question 134: Which of the following most accurately describes the Cyber K...; Question 135: A company's user accounts have been compromised. Users are a...; Question 136: A small company does not have enough staff to effectively se...; Question 137: After a series of UEBA alerts, a company's SOC observes an e...; Question 138: A security team conducts a lessons-learned meeting after str...; Question 139: Which of the following is instituting a security policy that...; Question 140: Which of the following describes a contract that is used to ...; Question 141: An analyst receives alerts that state the following traffic ...; Question 142: Joe, a leading sales person at an organization, has announce...; Question 143: A company's policy is to follow NIST standards and use stron...; Question 144: A security analyst is reviewing the following alert that was...; Question 145: A security analyst needs to block vulnerable ports and disab...; Question 146: Some hard disks need to be taken as evidence for further ana...; Question 147: A disgruntled open-source developer has decided to sabotage ...; Question 148: During the security assessment of a new application, a teste...; Question 149: A security team is concerned about recent Layer 4 DDoS attac...; Question 150: Which of the following is MOST dangerous to the client envir...; Question 151: A SOC manager is looking for a solution that can improve the...; Question 152: A cybersecurity analyst is doing triage in a SIEM and notice...; Question 153: Which of the following phases of the Cyber Kill Chain involv...; Question 154: A security analyst runs the following command: (Exhibit) Whi...; Question 155: Two employees in the finance department installed a freeware...; Question 156: A virtual web server in a server pool was infected with malw...; Question 157: A user is flagged for consistently consuming a high volume o...; Question 158: A company is in the middle of an incident, and customer data...; Question 159: Which of the following describes how a CSIRT lead determines...; Question 160: An analyst is investigating a phishing incident and has retr...; Question 161: A newly hired security manager in a SOC wants to improve eff...; Question 162: Which of the following makes STIX and OpenloC information re...; Question 163: A security analyst is looking for information that would ser...; Question 164: An organization plans to use an advanced machine-learning to...; Question 165: An attacker recently gained unauthorized access to a financi...; Question 166: A SOC analyst observes reconnaissance activity from an IP ad...; Question 167: Which of the following techniques can help a SOC team to red...; Question 168: Numerous emails were sent to a company's customer distributi...; Question 169: Which of the following BEST explains the function of trusted...; Question 170: A security analyst reviews the following results of a Nikto ...; Question 171: An analyst finds that an IP address outside of the company n...; Question 172: A vulnerability scanner generates the following output: (Exh...; Question 173: To minimize the impact of a security incident, a cybersecuri...; Question 174: An analyst suspects cleartext passwords are being sent over ...; Question 175: A security analyst received a malicious binary file to analy...; Question 176: The SOC receives a number of complaints regarding a recent u...; Question 177: A security analyst needs to support an organization's legal ...; Question 178: A systems administrator receives several reports about email...; Question 179: An analyst is reviewing a dashboard from the company's SIEM ...; Question 180: A security analyst needs to mitigate a known, exploited vuln...; Question 181: An organization has a critical financial application hosted ...; Question 182: A security analyst working for an airline is prioritizing vu...; Question 183: Which of the following is the software development process b...; Question 184: A vulnerability scan shows several vulnerabilities. At the s...; Question 185: A user clicks on a malicious adware link, and the malware su...; Question 186: A cybersecurity analyst is participating with the DLP projec...; Question 187: During the threat modeling process for a new application tha...; Question 188: The security team at a company, which was a recent target of...; Question 189: A user's computer is performing slower than the day before, ...; Question 190: An incident responder was able to recover a binary file thro...; Question 191: A technician identifies a vulnerability on a server and appl...; Question 192: A WAF weekly report shows that a daily spike occurs from the...; Question 193: New employees in an organization have been consistently plug...; Question 194: A security team needs to demonstrate how prepared the team i...; Question 195: A company is concerned with finding sensitive file storage l...; Question 196: A vulnerability scan of a web server that is exposed to the ...; Question 197: A security manager is looking at a third-party vulnerability...; Question 198: Which of the following, BEST explains the function of TPM?...; Question 199: A managed security service provider is having difficulty ret...; Question 200: A security analyst would like to integrate two different Saa...; Question 201: A cybersecurity analyst is reviewing SIEM logs and observes ...; Question 202: A Chief Information Security Officer (CISO) has decided the ...; Question 203: Which of the following is the best framework for assessing h...; Question 204: A systems administrator notices unfamiliar directory names o...; Question 205: The analyst reviews the following endpoint log entry: (Exhib...; Question 206: Which of the following attributes is part of the Diamond Mod...; Question 207: The Chief Executive Officer (CEO) has notified that a confid...; Question 208: An analyst determines a security incident has occurred. Whic...; Question 209: An incident response team is assessing attack vectors of mal...; Question 210: An incident response analyst notices multiple emails travers...; Question 211: During a scan of a web server in the perimeter network, a vu...; Question 212: Which of the following is the best metric to use when review...; Question 213: Chief Information Security Officer (CISO) wants to disable a...; Question 214: Hotspot Question A security analyst performs various types o...; Question 215: A vulnerability analyst is writing a report documenting the ...; Question 216: Which of the following should be updated after a lessons-lea...; Question 217: During an incident, analysts need to rapidly investigate by ...; Question 218: Which of the following ensures that a team receives simulate...; Question 219: A security manager reviews the permissions for the approved ...; Question 220: During an incident, some IoCs of possible ransomware contami...; Question 221: Executives want to compare certain metrics from the most rec...; Question 222: A code review reveals a web application is using lime-based ...; Question 223: A user downloads software that contains malware onto a compu...; Question 224: Which of the following best explains the importance of utili...; Question 225: SIMULATION A healthcare organization must develop an action ...; Question 226: SIMULATION Approximately 100 employees at your company have ...; Question 227: Alerts from the security dashboard are reporting a cloud-bas...; Question 228: A security analyst performs a vulnerability scan. Based on t...; Question 229: During a tabletop exercise, engineers discovered that an ICS...; Question 230: A security analyst recently used Arachni to perform a vulner...; Question 231: A vulnerability management team is unable to patch all vulne...; Question 232: While reviewing web server logs, a security analyst discover...; Question 233: A security analyst notices multiple attempts of the same exp...; Question 234: An organization utilizes multiple vendors, each with its own...; Question 235: An organization's threat intelligence team notes a recent tr...; Question 236: A high volume of failed RDP authentication attempts was logg...; Question 237: An analyst notices that logs contain multiple events for com...; Question 238: A company runs a website that allows public posts. Recently,...; Question 239: An organization's email account was compromised by a bad act...; Question 240: The DevSecOps team is remediating a Server-Side Request Forg...; Question 241: A SOC receives several alerts indicating user accounts are c...; Question 242: A cybersecurity team lead is developing metrics to present i...; Question 243: Which of the following BEST describes HSM?...; Question 244: Which of the following does a security policy do?...; Question 245: A laptop that is company owned and managed is suspected to h...; Question 246: Several incidents have occurred with a legacy web applicatio...; Question 247: A company receives a penetration test report summary from a ...; Question 248: Due to an incident involving company devices, an incident re...; Question 249: Which of the following is a reason proper handling and repor...; Question 250: A security analyst must review a suspicious email to determi...; Question 251: During an internal code review, software called "ACE" was di...; Question 252: A company is launching a new application in its internal net...; Question 253: A security analyst is trying to validate the results of a we...; Question 254: The security analyst received the monthly vulnerability repo...; Question 255: A security analyst at a company called ACME Commercial notic...; Question 256: An organization would like to ensure its cloud infrastructur...; Question 257: An organization conducted a web application vulnerability as...; Question 258: During security scanning, a security analyst regularly finds...; Question 259: A company classifies security groups by risk level. Any grou...; Question 260: An employee is no longer able to log in to an account after ...; Question 261: An analyst is becoming overwhelmed with the number of events...; Question 262: A recent penetration test discovered that several employees ...; Question 263: A cybersecurity analyst is tasked with scanning a web applic...; Question 264: During an incident, a security analyst discovers a large amo...; Question 265: A security analyst found an old version of OpenSSH running o...

Question 68/265

LEAVE A REPLY

Download PDF File