Certified Cloud Security Professional (CCSP) — Question 268

Which of the following threat types can occur when baselines are not appropriately applied or unauthorized changes are made?

Answer options

• A. Insecure direct object references
• B. Unvalidated redirects and forwards
• C. Security misconfiguration
• D. Sensitive data exposure

Correct answer: C

Explanation

The correct answer is C, Security misconfiguration, as it directly relates to the issues stemming from improper baseline application or unauthorized changes. The other options, while they represent security threats, do not specifically address the consequences of misconfigurations or baseline failures.