Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
A routine vulnerability scan detected a known vulnerability in a critical enterprise web application. Which of the following would be the BEST next step?
A.
Submit a change request to have the system patched.
B.
Evaluate the risk and criticality to determine if further action is necessary.
C.
Notify a manager of the breach and initiate emergency procedures.
D.
Remove the application from production and inform the users.
Before taking any immediate actions, it's essential to evaluate the risk and criticality of the known vulnerability. This involves assessing the potential impact on the organization, understanding the exploitability of the vulnerability, and considering the business context. Based on this evaluation, the organization can make informed decisions about the urgency and appropriate response, whether it involves immediate patching, implementing compensating controls, or planning a more comprehensive remediation strategy. Simply patching without understanding the risk may lead to unintended consequences or unnecessary disruptions.
Known Vuln = Known impact, risk and consequences ! So patch it!
Again dumb question!
However, in real life! there is always testing the patch ! it might break things in the site
It is a known vulnerability on the company's web application.... which implies the possible accessible to and from the world. I think some of you voted for B are overthinking of the issue. It needs to initiate change management....
A "vulnerability" was found in a "critical system". From that information we have no way of knowing if the vulnerability is even relevant or how serious it is. This is why the analyst must determine the severity of the vulnerability and it's relevance.
Like for example in my company we have an internal load balancer which is currently outdated an running on an old software version. We can see the vulnerabilities but since the load balancer is only internally accessible it's not necessary for us to patch it. Therefore we ignore those particular vulnerabilities it finds.
Definitely B
"Critical enterprise web application" remove all that you have explained in the second part of your comment.
Web access and critical. You should patch it through change management procedure.
From the study guide practice questions and this exam dump - whenever compita has an question about an critical vulnerability - the answer is always to remove the critical vulnerability (I know in the real world - we verify beforehand)
Hello everyone, I see all comments are choosing B and everything that's written makes sense.
However I have a question;
QUESTION 215 in this dump says: The analyst immediately deploys a critical
security patch. and the ANSWER to that question was: A Known exploit was discovered.
Then given the above, why would choose B over A, if we use the same logic in the 2 questions? I mean both are mentioning a known vulnerability/exploit was discovered..
I will monitor that question for an answer until the next 7 days (day of the exam), appreciate your feedback profs.
I think the difference here was or is, in this question, it mentions it is a "known vulnerability" in a Critical system. In question 215 from you description, is mentions a critical security patch. This question does not mention there was a critical exploit found. I see what your saying though
B
You don't just blindly have a critical system patched without evaluating the risk, not only of the vulnerability but also of installing the patch. Patches ROUTINELY bring down critical services.
Actually it doesn't. It says a critical system, not a critical vulnerability. I thought A at first also but re-reading the question I am leaning with B.
it also says a known vulnerability. if its know, there is no need to investigate more move on to patching. i stand with A
upvoted 2 times
...
...
...
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
skibby16
3 months, 3 weeks agouday1985
6 months, 2 weeks agoChilaqui1es
5 months agobuchhe
7 months, 2 weeks agoSimonR2
11 months agonovolyus
4 months agocyberrae
11 months agoAaronS1990
1 year, 1 month agoabsabs
1 year, 1 month agoj0n45
1 year, 2 months ago2Fish
1 year agogwanedm
1 year, 3 months agojchutch2
1 year, 5 months agoTreymb6
1 year, 5 months agotehge
1 year, 6 months agoAdrian831
1 year, 6 months agosh4dali
1 year, 6 months agomarc4354345
1 year, 6 months agosh4dali
1 year, 6 months agoMaverick713
1 year, 6 months agoBig_Dre
7 months, 1 week ago