A vulnerability scan has identified a critical buffer overflow vulnerability in a production server running a widely used application. Which of the following actions should be taken to best mitigate the risk posed by this vulnerability?
Restart the affected application service.
Conduct a detailed audit of the affected system.
Implement network segmentation to isolate the affected server.
Apply the patch released by the application vendor.
Applying a patch is the most effective corrective control because it directly addresses and fixes the underlying vulnerability code. While compensating controls can reduce risk, they do not eliminate the vulnerability itself. Restarting the service may provide temporary relief but does not fix the root cause. Auditing the system helps understand the scope but does not mitigate the risk.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.