CompTIA CySA+ (CS0-002) — Question 68

A remote code execution vulnerability was discovered in the RDP. An organization currently uses RDP for remote access to a portion of its VDI environment. The analyst verified network-level authentication is enabled. Which of the following is the BEST remediation for this vulnerability?

Answer options

• A. Verify the threat intelligence feed is updated with the latest solutions.
• B. Verify the system logs do not contain indicators of compromise.
• C. Verify the latest endpoint-protection signature is in place.
• D. Verify the corresponding patch for the vulnerability is installed.

Correct answer: D

Explanation

The correct answer is D because installing the relevant patch directly addresses the vulnerability and mitigates the risk of exploitation. Options A, B, and C are not effective in resolving the vulnerability itself; they focus on monitoring or updating security measures rather than applying a specific fix.