CompTIA
CV0-003 · Question #920
CV0-003 Question #920: Real Exam Question with Answer & Explanation
The correct answer is D: Implement a virtual patch in the WAF.. A virtual patch in the Web Application Firewall (WAF) provides immediate protection against a zero-day vulnerability by filtering malicious traffic, without requiring downtime for system updates.
Security
Question
One of the web applications in a public subnet is vulnerable to a newly discovered zero-day vulnerability. Which of the following actions can a security engineer perform to reduce the risk of exploitation and application downtime?
Options
- AStop the web server in the affected host.
- BInsert a deny rule in the host firewall.
- CAdd a new signature in the network IDS.
- DImplement a virtual patch in the WAF.
Explanation
A virtual patch in the Web Application Firewall (WAF) provides immediate protection against a zero-day vulnerability by filtering malicious traffic, without requiring downtime for system updates.
Topics
#zero-day vulnerability#WAF#virtual patching#risk mitigation
Community Discussion
No community discussion yet for this question.