CISSP Question #1046: Real Exam Question with Answer & Explanation

Sign in or unlock CISSP to reveal the answer and full explanation for question #1046. The question stem and answer options stay visible for context.

Submitted by fernanda_arg· Mar 5, 2026Software Development Security

Question

A software development company has a short timeline in which to deliver a software product. The software development team decides to use open-source software libraries to reduce the development time. What concept should software developers consider when using open-source software libraries?

Options

AOpen source libraries contain known vulnerabilities, and adversaries regularly exploit those
BOpen source libraries can be used by everyone, and there is a common understanding that the
COpen source libraries are constantly updated, making it unlikely that a vulnerability exists for an
DOpen source libraries contain unknown vulnerabilities, so they should not be used.

Unlock CISSP to see the answer

You've previewed enough free CISSP questions. Unlock CISSP for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock CISSP - $49.99 / 30 days Sign in

Topics

#open-source security#software supply chain#vulnerability management#SDLC risks

Full CISSP Practice Browse All CISSP Questions