Vulnerability Data Analysis and Prioritization

Question 1

Which of the following are part of the Base Score Metrics in the CVSS Calculator? [Choose all that apply]
A. Exploit Code Maturity
B. Attack Complexity
C. Attack Vector
D. User Interaction

Answer 1

B. Attack Complexity
C. Attack Vector
D. User Interaction
Attack Vector, Attack Complexity and User Interaction are all part of the Base Score Metrics in the CVSS Calculator. Exploit Code Maturity is part of the Temporal Score Metrics in the CVSS Calculator.

Question 2

What is the purpose of the CVSS Calculator?
A. Determine the severity of a discovered vulnerability
B. Detect malicious code
C. Determine the amount of bandwidth available
D. Create a report for a discovered vulnerability

Answer 2

A. Determine the severity of a discovered vulnerability

Question 3

Which vulnerabilities are measured by the Temporal Score Metrics in the CVSS calculator? [Choose all that apply]
A. Integrity Impact
B. Remediation Level
C. Attack Vector
D. Report Confidence

Answer 3

B. Remediation Level
D. Report Confidence

Question 4

Which application can be used to determine the CVSS score for a web application?
A. Task Manager
B. Nessus
C. Windows Defender
D. Splunk

Answer 4

B. Nessus
The Nessus application can be used to determine the CVSS score of a web application. The Splunk application can be used to collect logs and detect malicious activity. Windows Defender and Task Manager cannot be used for this purpose.