CompTIA Security+ (SY0-501) — Question 11

During a monthly vulnerability scan, a server was flagged for being vulnerable to an Apache Struts exploit. Upon further investigation, the developer responsible for the server informs the security team that Apache Struts is not installed on the server. Which of the following BEST describes how the security team should reach to this incident?

Answer options

• A. The finding is a false positive and can be disregarded
• B. The Struts module needs to be hardened on the server
• C. The Apache software on the server needs to be patched and updated
• D. The server has been compromised by malware and needs to be quarantined.

Correct answer: A

Explanation

The correct answer is A because if Apache Struts is not installed, the vulnerability flagged during the scan is likely a false positive and can be safely ignored. Options B and C suggest actions related to hardening or updating software that is not present, which is unnecessary. Option D implies a malware compromise without evidence, which is not justified in this scenario.