CAS-005 · Question #515
CAS-005 Question #515: Real Exam Question with Answer & Explanation
The correct answer is D: Updating vulnerable third-party source code. The table shows that some open-source modules, such as the email module (492 days old) and input sanitization module (203 days old), are outdated. The most effective mitigation is to update vulnerable third-party source code to the latest secure versions, reducing exposure to kno
Question
A security analyst must perform a security review on a static application. The application mostly contains publicly available open-source modules. The analyst reviews the following table: Which of the following mitigations would the security analyst most likely recommend?
Options
- AInstalling a WAF to block cross-site scripting
- BConfiguring TLS for all web-client connections
- CTransitioning to proprietary modules
- DUpdating vulnerable third-party source code
Explanation
The table shows that some open-source modules, such as the email module (492 days old) and input sanitization module (203 days old), are outdated. The most effective mitigation is to update vulnerable third-party source code to the latest secure versions, reducing exposure to known vulnerabilities.
Community Discussion
No community discussion yet for this question.