A cloud administrator is notified that a critical Common Vulnerabilities and Exposures (CVE) alert has been issued for the web server software running on several production virtual machines. The software vendor has already released a security update. Which of the following security practices should the administrator prioritize to mitigate this specific risk?
In this scenario, the discovery of a specific vulnerability with an available vendor fix calls for patching. Patching is the process of applying these updates to fix known security flaws. While hardening, encryption, and access control are all crucial security measures, they do not directly remediate the specific software code vulnerability described. Therefore, the most immediate and appropriate action is to apply the vendor's patch.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is patching in the context of software systems?