CompTIA PenTest+ (PT0-002) — Question 335

During an assessment, a penetration tester compromised a mobile application by decompiling the APK binary file. Which of the following was most likely the issue?

Answer options

• A. Outdated firmware
• B. Third-party library
• C. Hard-coded credentials
• D. Data corruption

Correct answer: C

Explanation

The correct answer is C, as hard-coded credentials can be easily extracted from decompiled APKs, allowing unauthorized access. Options A, B, and D do not directly relate to vulnerabilities that can be exploited through decompilation, making them less relevant in this context.