Skip to Content
CompTIA PenTest+ Study Guide, 2nd Edition
book

CompTIA PenTest+ Study Guide, 2nd Edition

by Mike Chapple, David Seidl
November 2021
Intermediate to advanced
576 pages
15h 11m
English
Sybex
Content preview from CompTIA PenTest+ Study Guide, 2nd Edition

Appendix BSolution to Lab Exercise

Solution to Activity 5.2: Analyzing a CVSS Vector

The CVSS vector for the IKE vulnerability shown in Figure 5.22 is CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N. Breaking this down piece by piece gives us the following:

  • AV:N indicates that an attacker may exploit the vulnerability remotely over a network. This is the most serious value for this metric.
  • AC:L indicates that exploiting the vulnerability does not require any specialized conditions. This is the most serious value for this metric.
  • PR:N indicates that attackers do not need any authenticated privileges. This is the most serious value for this metric.
  • UI:N indicates that no user interaction is necessary to exploit the vulnerability.
  • S:U indicates ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

CompTIA PenTest+ Study Guide, 3rd Edition

CompTIA PenTest+ Study Guide, 3rd Edition

Mike Chapple, Robert Shimonski, David Seidl
CompTIA CySA+ Study Guide, 3rd Edition
CompTIA Cloud+ Study Guide, 3rd Edition
CompTIA Linux+ Study Guide, 5th Edition

CompTIA Linux+ Study Guide, 5th Edition

Richard Blum, Christine Bresnahan

Publisher Resources

ISBN: 9781119823810Purchase Link