An IT administrator is reviewing all the servers in an organization and notices that a server is missing crucial practice against a recent exploit that could gain root access.
Which of the following describes the administrator's discovery?
An IT administrator is reviewing all the servers in an organization and notices that a server is missing crucial practice against a recent exploit that could gain root access.
Which of the following describes the administrator's discovery?
A vulnerability is a weakness or flaw in a system that can be exploited by a threat to gain unauthorized access or perform unauthorized actions. In this scenario, the IT administrator discovered that a server is missing crucial practices against a recent exploit. This lack of necessary protection or patching makes the server susceptible to being compromised, which defines a vulnerability.
A is correct. This is a vulnerability.
vulnerability refers to a weakness in your system while the risk is related to the potential for lost, damaged, or destroyed assets
Vulnerability is something that COULD happen. Thus the keyword in this question. Vulnerability = Exposed Threat = An event that leverages a Vulnerability Breach = Is after the event is successful Risk = While the vulnerability is a risk, Risk is an interpretation by the company itself of vulnerabilities that they feel are important. (you can never patch ALL vulnerabilities; otherwise, there would never be breaches.) Source: Verifying each answer against Chat GPT, my experience, other test banks, a written book, and weighing in the discussion from all users to create a 100% accurate guide for myself before I take the exam. (It isn't easy because of the time needed, but it is doing my diligence)
why not C?
A breach would indicate that someone was able to exploit the vulnerability. Since this question just states that there is a potential issue, no breach is implied. If it said "... that someone used to gain root access." then it would be a breach.