Patch Management — CompTIA Security+ (SY0-701) Practice Questions
Patch management is the systematic process of acquiring, testing, and deploying software updates to close known security vulnerabilities before attackers can exploit them. The SY0-701 exam tests knowledge of patch management lifecycle stages, the role of a patch management system, and the risks of delayed or incomplete patching such as exploit availability growing over time after a CVE is published. Candidates should understand the difference between hotfixes, service packs, and firmware updates, as well as rollback procedures when a patch causes instability. Patch management is tightly coupled with vulnerability management and is a key control in reducing an organization's attack surface.
Free questions on patch management
Which of the following best describes a zero-day vulnerability?
Free question · easy · full answer + explanation
More patch management questions in the full bank
- An IoT device manufacturer fails to provide security updates for their devices. What is the GREATEST risk? Unlock answer & explanation →
- A security analyst receives a low-impact vulnerability report. According to CVSS scoring, what does this indicate about severity? Unlock answer & explanation →
- Which of the following describes embedded systems security challenges? Unlock answer & explanation →