Cisco
350-201(NEW-127Q) · Question #34
350-201(NEW-127Q) Question #34: Real Exam Question with Answer & Explanation
Sign in or unlock 350-201(NEW-127Q) to reveal the answer and full explanation for question #34. The question stem and answer options stay visible for context.
Vulnerability Management and Mitigation
Question
A security team received an alert from a vulnerability scanner about a zero-day vulnerability affecting a company-owned, SSL-based remote access VPN concentrator. Using this vulnerability, an external attacker can send a crafted request that allows the intruder to perform malicious code-execution and gain management access to the VPN concentrator. A vendor patch is not available and remote access is critical for business operations. Which action should the security team take to mitigate their vulnerability?
Options
- APerform virtual patching via Cisco IDS rules that block crafted requests for connections from outside.
- BRestrict access to the VPN concentrator management interfaces only from trusted internal sources.
- CRestrict access to VPN service to accept connection only from trusted outside IP address ranges.
- DBlock any connections to the TCP/443 port of the VPN concentrator and wait for a vendor patch.
Unlock 350-201(NEW-127Q) to see the answer
You've previewed enough free 350-201(NEW-127Q) questions. Unlock 350-201(NEW-127Q) for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#Zero-day vulnerability mitigation#VPN security#Network access control#Defense-in-depth