CompTIA Security+ (SY0-701) — Question 250
A third-party vendor is moving a particular application to the end-of-life stage at the end of the current year. Which of the following is the most critical risk if the company chooses to continue running the application?
Answer options
- A. Lack of security updates
- B. Lack of new features
- C. Lack of support
- D. Lack of source code access
Correct answer: A
Explanation
The most critical risk is A, as continuing to run an application without security updates exposes the company to vulnerabilities and potential breaches. While lack of new features (B) and support (C) can impact usability and assistance, they do not pose an immediate threat to the organization's security. Lack of source code access (D) can be problematic but is not as urgent as the risk associated with security vulnerabilities.