CompTIA CySA+ (CS0-002) — Question 326

A routine vulnerability scan detected a known vulnerability in a critical enterprise web application. Which of the following would be the BEST next step?

Answer options

• A. Submit a change request to have the system patched.
• B. Evaluate the risk and criticality to determine if further action is necessary.
• C. Notify a manager of the breach and initiate emergency procedures.
• D. Remove the application from production and inform the users.

Correct answer: B

Explanation

The correct answer is B because evaluating the risk and criticality allows for informed decision-making on whether immediate action is required. Options A, C, and D may be premature without understanding the severity of the vulnerability and its impact on the organization.