CompTIA CySA+ (CS0-001) — Question 167

Which of the following systems or services is MOST likely to exhibit issues stemming from the Heartbleed vulnerability (Choose two.)

Answer options

• A. SSH daemons
• B. Web servers
• C. Modbus devices
• D. TLS VPN services
• E. IPSec VPN concentrators
• F. SMB service

Correct answer: D, E

Explanation

The Heartbleed vulnerability primarily affects services that utilize OpenSSL, particularly those that implement TLS/SSL protocols. TLS VPN services (D) and IPSec VPN concentrators (E) are directly impacted as they rely on these protocols for secure communications, while the other options either do not use OpenSSL or are less likely to be affected by this specific vulnerability.