Zero-Day — CompTIA Security+ (SY0-701) Practice Questions
A zero-day vulnerability is a flaw in software or hardware that is unknown to the vendor or has no available patch at the time of exploitation. SY0-701 tests candidates on why zero-days are particularly dangerous: defenders cannot rely on signature-based detection or vendor-supplied fixes, so compensating controls such as behavioral monitoring, network segmentation, and least privilege become critical. The exam also connects zero-days to threat intelligence feeds and the concept of the vulnerability window, the period between discovery and patch availability. Questions may ask candidates to identify appropriate mitigations when a patch does not yet exist.
Free questions on zero-day
Which of the following best describes a zero-day vulnerability?
Free question · easy · full answer + explanation
More zero-day questions in the full bank
- A security team identifies a new zero-day vulnerability affecting their firewall. Which response action should be prioritized first? Unlock answer & explanation →
- An attacker uses a vulnerability in an application that has not yet been publicly disclosed or patched by the vendor. What type of exploit is this? Unlock answer & explanation →
- In the context of IDS/IPS, what is the primary disadvantage of signature-based detection compared to anomaly-based detection? Unlock answer & explanation →