SY0-701 · Question #701
SY0-701 Question #701: Real Exam Question with Answer & Explanation
The correct answer is A: Patching. Patching directly remediates a known vulnerability by applying a software fix from the vendor, closing the security gap at its source - making it the most targeted and effective response to a discovered vulnerability. Why the others fall short: B. Segmentation isolates network zo
Question
Which of the following actions best addresses a vulnerability found on a company's web server?
Options
- APatching
- BSegmentation
- CDecommissioning
- DMonitoring
Explanation
Patching directly remediates a known vulnerability by applying a software fix from the vendor, closing the security gap at its source - making it the most targeted and effective response to a discovered vulnerability.
Why the others fall short:
- B. Segmentation isolates network zones to limit lateral movement, but doesn't fix the underlying flaw - the vulnerability still exists.
- C. Decommissioning removes the system entirely, which is disproportionate for a patchable issue and disrupts business operations unnecessarily.
- D. Monitoring detects or alerts on exploitation attempts but is purely reactive - it doesn't eliminate the vulnerability itself.
Memory tip: Think "patch the hole, don't just watch it." When a specific vulnerability is identified, the first-line fix is always to patch it. The other options are useful in broader security strategy but don't address (i.e., remediate) the vulnerability directly.
Topics
Community Discussion
No community discussion yet for this question.