A company has identified critical vulnerabilities in its web servers. As part of the action plan, what is the most appropriate first step the organization should take to mitigate these vulnerabilities?
Apply available patches to the affected web servers
Update the configuration management database (CMDB)
Implement compensating controls to reduce the risk
Initiate an awareness program to educate employees about the vulnerability
The correct first step in mitigating critical vulnerabilities is to perform initial triage and apply available patches or fixes. By doing so, you reduce the immediate risk posed by the vulnerabilities. Configuration management, compensating controls, and awareness training are all important parts of the overall action plan but should follow the immediate mitigation efforts.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are critical vulnerabilities?
Open an interactive chat with Bash
What does it mean to apply patches?
Open an interactive chat with Bash
What is a configuration management database (CMDB)?