Certified Cloud Security Professional (CCSP) — Question 335

Which of the following threat types can occur when baselines are not appropriately applied or when unauthorized changes are made?

Answer options

• A. Security misconfiguration
• B. Insecure direct object references
• C. Unvalidated redirects and forwards
• D. Sensitive data exposure

Correct answer: A

Explanation

The correct answer is A, Security misconfiguration, because failing to adhere to established baselines can lead to vulnerabilities in system configurations. The other options refer to different types of security issues that do not directly relate to the improper application of baselines or unauthorized changes.