$30.$

What is the goal of performing quarterly

vulnerability scans and rescans?

O To address all "high risk" vulnerabilities as defined in PCI DSS

requirement $6\mathrm{.}1$

O To address all vulnerabilities ranked "low", "medium", or "high"

as defined by the ASV

O To address any vulnerabilities with a CVSS score of $4\mathrm{.}0$ or lower

O To address any vulnerabilities with CVSS score of $7\mathrm{.}0$ or higher