PCCSE · Question #246
PCCSE Question #246: Real Exam Question with Answer & Explanation
Sign in or unlock PCCSE to reveal the answer and full explanation for question #246. The question stem and answer options stay visible for context.
Question
Based on the following information, which RQL query will satisfy the requirement to identify VM hosts deployed to organization public cloud environments exposed to network traffic from the internet and affected by Text4Shell RCE (CVE-2022-42889) vulnerability? - Network flow logs from all virtual private cloud (VPC) subnets are ingested to the Prisma Cloud Enterprise Edition tenant. - All virtual machines (VMs) have Prisma Cloud Defender deployed.
Options
- Anetwork from vpc.flow_record where bytes > 0 AND dest.resource IN (resource where finding.type
- Bconfig from vpc.flow_record where bytes > 0 AND dest.resource IN (resource where finding.type
- Cnetwork from vpc.flow_record where bytes > 0 AND finding.type IN ('Host Vulnerability') AND
- Dconfig from cloud.resource where cloud.type = 'aws' AND api.name = 'aws-ec2-describe-instances'
Unlock PCCSE to see the answer
You've previewed enough free PCCSE questions. Unlock PCCSE for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.