CAS-005 · Question #7
CAS-005 Question #7: Real Exam Question with Answer & Explanation
The correct answer is A: Automating the patching system to update base Images. The output shows that multiple systems have outdated or vulnerable software versions (OpenSSL 1.01 and Java 11 runtime). This suggests that the systems are not being patched regularly or Automating the patching system to update base images: Automating the patching process ensures
Question
A security professional is investigating a trend in vulnerability findings for newly deployed cloud systems. Given the following output: Which of the following actions would address the root cause of this issue?
Options
- AAutomating the patching system to update base Images
- BRecompiling the affected programs with the most current patches
- CDisabling unused/unneeded ports on all servers
- DDeploying a WAF with virtual patching upstream of the affected systems
Explanation
The output shows that multiple systems have outdated or vulnerable software versions (OpenSSL 1.01 and Java 11 runtime). This suggests that the systems are not being patched regularly or Automating the patching system to update base images: Automating the patching process ensures that the latest security updates and patches are applied to all systems, including newly deployed ones. This addresses the root cause by ensuring that base images used for deployment are always up-to-date with the latest security patches.
Community Discussion
No community discussion yet for this question.