A vulnerability scan has identified a critical buffer overflow vulnerability in a production server running a widely used application. Which of the following actions should be taken to best mitigate the risk posed by this vulnerability?
Apply the patch released by the application vendor.
Implement network segmentation to isolate the affected server.
Applying a patch is the most effective corrective control because it directly addresses and fixes the underlying vulnerability code. While compensating controls can reduce risk, they do not eliminate the vulnerability itself. Restarting the service may provide temporary relief but does not fix the root cause. Auditing the system helps understand the scope but does not mitigate the risk.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.