CAS-005 · Question #497
CAS-005 Question #497: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-005 to reveal the answer and full explanation for question #497. The question stem and answer options stay visible for context.
Question
A security team is evaluating the following vulnerabilities in response to a third-party risk assessment: Given the following organizational policy requirements: - Any adjusted CVSS score of 7.0 or greater must be remediated within 15 days. - Any adjusted CVSS score of 6.9 or less must be remediated within 30 days. - Any vulnerability with a known public exploit must be remediated within seven days. - Any vulnerability that requires high privileges can have a lower severity. Which of the following actions should the analyst do to meet the requirements on time?
Options
- AImplement a patch for CVE-2025-1234.
- BAccept risk for CVE-2022-5678.
- CMake an exception within the insurance policy for CVE-2022-5678.
- DAdd CVE-2024-9123 to the risk register.
- EDecommission the systems affected by CVE-2024-9123.
Unlock CAS-005 to see the answer
You've previewed enough free CAS-005 questions. Unlock CAS-005 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.