Cisco CyberOps Professional 350-201 Question # 21 Topic 3 Discussion
350-201 Exam Topic 3 Question 21 Discussion:
Question #: 21
Topic #: 3
A company recently completed an internal audit and discovered that there is CSRF vulnerability in 20 of its hosted applications. Based on the audit, which recommendation should an engineer make for patching?
A.
Identify the business applications running on the assets
B.
Update software to patch third-party software
C.
Validate CSRF by executing exploits within Metasploit
When dealing with a CSRF vulnerability discovered in multiple applications, the recommended approach is to prioritize patching based on the risk scores associated with each application. This ensures that the most critical vulnerabilities that pose the greatest risk to the organization are addressed first. It is a strategic approach that aligns remediation efforts with the potential impact of the vulnerabilities4.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit