CompTIACompTIA
CAS-005 · Question #14
CAS-005 Question #14: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-005 to reveal the answer and full explanation for question #14. The question stem and answer options stay visible for context.
Submitted by carter_n· Mar 6, 2026Security Operations
Question
During a security assessment using an EDR solution, a security engineer generates the following report about the assets in the system: After five days, the EDR console reports a blocked infection on the host 0WIN23 by a remote access Trojan. Which of the following most likely enabled the attempted infection?
Options
- A0W1N23 uses a legacy version of Windows that is not supported by the EDR
- BLN002 was not supported by the EDR solution and propagates the RAT
- CThe EDR has an unknown vulnerability that was exploited by the attacker
- D0W1N29 spreads the malware through other hosts in the network
Unlock CAS-005 to see the answer
You've previewed enough free CAS-005 questions. Unlock CAS-005 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.