ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CV0-004 All Questions

View all questions & answers for the CV0-004 exam
Go to Exam

Exam CV0-004 topic 1 question 48 discussion

Actual exam question from CompTIA's CV0-004
Question #: 48
Topic #: 1
[All CV0-004 Questions]

A cross-site request forgery vulnerability exploited a web application that was hosted in a public IaaS network. A security engineer determined that deploying a WAF in blocking mode at a CDN would prevent the application from being exploited again. However, a week after implementing the WAF, the application was exploited again. Which of the following should the security engineer do to make the WAF control effective?

  • A. Configure the DDoS protection on the CDN.
  • B. Install endpoint protection software on the VMs.
  • C. Add an ACL to the VM subnet.
  • D. Deploy an IDS on the IaaS network.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by 6f7e8ce at April 28, 2025, 8:29 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
331305a
1 month ago
Selected Answer: C
To make the WAF effective, traffic must be forced through it by restricting direct access to the backend. IDS are only detecting attacks, but not blocking. IPS might be a better solution
upvoted 2 times
...
6f7e8ce
1 month, 4 weeks ago
Selected Answer: D
DDoS protection stops volumetric attacks (overwhelming traffic), not targeted application layer vulnerabilities like CSRF.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel