Crucial Exams

CompTIA CySA+ CS0-003 Practice Question

A cybersecurity analyst is reviewing the vulnerabilities associated with an older, mission-critical application. The application cannot be updated or patched without significant downtime, which would impact business operations. After evaluating the application's vulnerabilities, it is determined that they are not actively being exploited in the wild and the potential impact is low. The environment is heavily monitored with numerous compensating controls in place to detect any malicious activity. Which course of action is most appropriate for the cybersecurity analyst to recommend in this scenario?

  • Recommend accepting the risk and continue monitoring for any changes in threat exposure.

  • Recommend mitigating the risk immediately by taking the application offline for patching.

  • Recommend avoiding the risk by ceasing the use of the application and seeking an alternative solution.

  • Recommend transferring the risk to a third-party vendor specializing in legacy application security.

CompTIA CySA+ CS0-003
Vulnerability Management
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
SAVE $49
CompTIA Cybersecurity Analyst Voucher (CySA+ CS0-003)
$404.00 $355.00
Bash, the Crucial Exams Chat Bot
AI Bot