During a routine vulnerability assessment, a security analyst discovers a high-severity vulnerability in an essential web application. Which of the following actions best ensures the availability of the application while the vulnerability is being remediated?
Patch the application after appropriate testing.
Take the application offline until the vulnerability is patched.
Implement a WAF rule to block exploit attempts.
Monitor network traffic for potential exploit attempts.
Ensuring availability involves maintaining system uptime while addressing vulnerabilities. Implementing a WAF rule can block exploit attempts related to the vulnerability, allowing the application to continue operating safely until the vulnerability is fully addressed. Taking the application offline would significantly impact availability. Patching is important but should be done only after appropriate testing to avoid unplanned downtime. Monitoring traffic alone doesn't prevent exploitation.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a WAF rule, and how does it block exploit attempts?
Open an interactive chat with Bash
Why is taking the application offline not ideal for availability?
Open an interactive chat with Bash
Why is patch testing important before applying a fix?