During plant operations, a set of legacy embedded controllers must run continuously to manage production safety. The vendor stopped releasing firmware, and the devices cannot be taken offline or updated. Which security concern does this scenario most likely present?
Systems that can no longer receive vendor updates suffer from an inability to patch. Any known or future vulnerabilities remain unremediated, forcing the organization to implement compensating controls to reduce the risk of exploitation, outage, or compromise. The other options describe separate security issues not directly caused by an unpatchable device.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why is an inability to patch a significant security concern?
Open an interactive chat with Bash
What are embedded systems, and why are they hard to update?
Open an interactive chat with Bash
What strategies can mitigate risks associated with unpatched systems?