KT-APP Vulnerable applications

Dependency scan shows log4j vulnerable library in three microservices. FIRST step?

Multiple choice — select one answer

Answer choices

  1. a. Identify versions in prod, upgrade or mitigate per vendor guidance, emergency change
  2. b. Delete microservices, using shared credentials instead of individual accountability.
  3. c. Hide scan results, using shared credentials instead of individual accountability.
  4. d. Wait for annual pen test, without security or identity team coordination per policy.

Architectural breakdown & explanation

Known exploited vulns need rapid inventory and patching.

Correct answer(s): a. Identify versions in prod, upgrade or mitigate per vendor guidance, emergency change

Exam domain: Vulnerable applications (25% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the KeyTrain's Key Training — Application Security bank. Run a full timed practice exam with domain-weighted random questions in your browser.