CompTIA CySA+ (CS0-003) — Question 399

A security analyst discovers multiple log entries from a recently acquired tool that was bundled as a YUM package. Those entries point to attempts of privilege escalation. Which of the following Is the most likely explanation?

Answer options

• A. The package was modified during installation.
• B. The package was missing critical DLL files.
• C. The package got corrupted while being downloaded.
• D. The package was installed without a GPG check.

Correct answer: D

Explanation

The correct answer is D because installing a package without a GPG check can lead to the installation of unverified and potentially malicious software, which could facilitate privilege escalation. Options A, B, and C describe scenarios that could lead to issues, but they do not directly relate to the security implications of unchecked package installation.