What is the purpose of a vulnerability assessment? MCQ with Answer and Explanation

What is the purpose of a vulnerability assessment?
A. To install security patches
B. To monitor network traffic
C. To identify and quantify security vulnerabilities in a system
D. To fix all security issues
Answer: Option C
Solution (By JKExamLibrary)
A vulnerability assessment is a process that identifies, quantifies, and prioritizes vulnerabilities in a system, providing a basis for remediation.

This question belongs to: Computer Cyber Security

Discuss this Question (0)

No comments yet. Be the first to start the discussion!

Practice More Cyber Security Questions

Question #1 Report Error
Which cybersecurity framework requires users to provide two or more distinct verification indicators—such as a password mixed with an instantaneous biometric facial scan—to unlock an account?
A. Multi-Factor Authentication (MFA)
B. Single Sign-On (SSO)
C. Data Encryption Standard (DES)
D. Access Control Listing (ACL)

Correct Answer: Option A


Explanation:
MFA strengthens identity management by requiring confirmation from multiple independent categories of authentication factors.

This question belongs to: Computer Cyber Security
Question #2 Report Error
What form of software vulnerability allows threat actors to execute arbitrary client-side scripts inside other users' browsers by compromising vulnerable web outputs?
A. SQL Injection
B. Cross-Site Scripting (XSS)
C. Buffer Overflow
D. Zero-Day Exploit

Correct Answer: Option B


Explanation:
XSS allows threat actors to execute malicious client-side scripts inside other users' browser views by compromising vulnerable web outputs.

This question belongs to: Computer Cyber Security
Question #3 Report Error
A hacker who uses simple, pre-written malicious scripts found online to deface websites or launch basic exploits without deep knowledge of programming is called a:
A. White Hat Engineer
B. Black Hat operative
C. Grey Hat analyst
D. Script Kiddie

Correct Answer: Option D


Explanation:
Script kiddies are low-skilled attackers who rely on pre-made, automated exploitation kits created by more experienced software developers.

This question belongs to: Computer Cyber Security