CompTIA CASP+ (CAS-003) — Question 125

A vulnerability was recently announced that allows a malicious user to gain root privileges on other virtual machines running within the same hardware cluster.
Customers of which of the following cloud-based solutions should be MOST concerned about this vulnerability?

Answer options

• A. Single-tenant private cloud
• B. Multitenant SaaS cloud
• C. Single-tenant hybrid cloud
• D. Multitenant IaaS cloud
• E. Multitenant PaaS cloud
• F. Single-tenant public cloud

Correct answer: D

Explanation

The correct answer is D, Multitenant IaaS cloud, because this environment allows multiple customers to share the same physical infrastructure, making it vulnerable to attacks that exploit shared resources. Other options, like single-tenant solutions, isolate resources and are less affected by such vulnerabilities since they do not share hardware with other users.