CompTIA Security+ SY0-601 – Question181

A security analyst is reviewing the vulnerability scan report for a web server following an incident. The
vulnerability that was used to exploit the server is present in historical vulnerability scan reports, and a patch is
available for the vulnerability. Which of the following is the MOST likely cause?


A.
Security patches were uninstalled due to user impact.
B. An adversary altered the vulnerability scan reports
C. A zero-day vulnerability was used to exploit the web server
D. The scan reported a false negative for the vulnerability

Correct Answer: D