KT-APP Software exploits

Threat intel lists active exploitation of a VPN appliance CVE. Action?

Multiple choice — select one answer

Answer choices

  1. a. Emergency patch or disconnect appliance per vendor advisory and IR plan
  2. b. Disable VPN and use telnet, without security or identity team coordination per policy.
  3. c. Wait for quarterly patch cycle, without security or identity team coordination per policy.
  4. d. Post CVE on social media only, without security or identity team coordination per policy.

Architectural breakdown & explanation

Known exploited vulns need immediate vendor-guided response.

Correct answer(s): a. Emergency patch or disconnect appliance per vendor advisory and IR plan

Exam domain: Software exploits (25% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the KeyTrain's Key Training — Application Security bank. Run a full timed practice exam with domain-weighted random questions in your browser.