KT-APP Software exploits

Threat actors weaponize a Citrix ADC flaw within 24 hours of disclosure. Your edge uses ADC. Step?

Multiple choice — select one answer

Answer choices

  1. a. Disable all VPN until the next major version upgrade in six months, without security or identity team coordination per policy.
  2. b. Schedule remediation at the next monthly maintenance window without monitoring, without security or identity team coordination per policy.
  3. c. Rely on users to report slowness as the primary exploitation detection method, without security or identity team coordination per policy.
  4. d. Apply vendor hotfix or WAF virtual patch immediately and hunt for IOCs on appliances

Architectural breakdown & explanation

Edge appliances with active exploitation need emergency patching and threat hunting.

Correct answer(s): d. Apply vendor hotfix or WAF virtual patch immediately and hunt for IOCs on appliances

Exam domain: Software exploits (25% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the KeyTrain's Key Training — Application Security bank. Run a full timed practice exam with domain-weighted random questions in your browser.