Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

bundle

50%

Enter your email address to receive your 50% off dicount code:

A confirmation link will be sent to this email address to verify your login.

* We value your privacy. We will not rent or sell your email address.

SPECIAL OFFER: GET 50% OFF

bundle

50%

Use Discount Code:

BRIEF50

A confirmation link was sent to your e-mail.

Please check your mailbox for a message from support@prepaway.com and follow the directions.

ISC Exam Questions

Free ISC2 Study Guide

Skip to top navigation

eMail
Facebook
Twitter

Skip to main navigation

Log in

Skip to content

Menu

Home
Community
- Support & Feedback
- Discussion
Support
Change Logs
Register
Login

Search for:

You are here: Home > ISC Exam Questions > CISSP (v.3) > Which of the following is a limitation of the Common Vulnerability Scoring System (CVSS) as it relates to cond

Post navigation

← Previous question

Next question →

PrepAway - Latest Free Exam Questions & Answers

Which of the following is a limitation of the Common Vulnerability Scoring System (CVSS) as it relates to cond

seenagapeMarch 29, 2016

Which of the following is a limitation of the Common Vulnerability Scoring System (CVSS) as it relates
to conducting code review?

PrepAway - Latest Free Exam Questions & Answers

A.
It has normalized severity ratings.

B.
It has many worksheets and practices to implement.

C.
It aims to calculate the risk of published vulnerabilities.

D.
It requires a robust risk management framework to be put in place.

In CISSP (v.3)Exam CISSP (update March 29th,2016)

Post navigation

← Previous question

Next question →

5 Comments on “Which of the following is a limitation of the Common Vulnerability Scoring System (CVSS) as it relates to cond”

Dan says:

August 29, 2016 at 6:51 pm

I don’t understand how the answer C is a limitation rather than a feature of CVSS.

2

0

Log in to Reply
1. Answer doesn't look correct says:
  
  September 16, 2016 at 9:54 pm
  
  I don’t think answer is correct here as well,
  
  0
  
  0
  
  Log in to Reply
2. Mig says:
  
  November 16, 2016 at 10:57 am
  
  CVSS score is assigned only to known/published vulnerabilities. During code review, you’re (in most cases) looking for zero-day vulnerabilities.
  
  0
  
  0
  
  Log in to Reply
bekh says:

September 21, 2016 at 1:55 pm

Answer is completely correct.
vulnerabilities when become public known by All , you will see it in CVSS.
this is compared to zero-day vulnerabilities!!!

when vulnerabilities become known, then it has been rated after code reviews

my personal opinion

0

0

Log in to Reply
robin says:

January 3, 2017 at 4:22 am

I think answer is correct.
No pr at all.

0

0

Log in to Reply

Leave a Reply Cancel reply

You must be logged in to post a comment.

Hide Sidebar

Related questions

Recent comments

eciammi wrote Can anyone suggest why Credential System ?

Move Up

Home
About
Community
Privacy
TOS

The ISC Exam Questions are not in real test, just for reference.