🔥 3-day streak
CompTIA CySA+ (CS0-003)104 / 147
Question 104 of 147
A CySA+ analyst is drafting the recommendations section of a vulnerability report for a critical flaw in an internet-facing application. The vendor has not yet released a patch, but the analyst identified a way to reduce exposure by disabling a vulnerable module and adding a WAF rule. What is the MOST accurate way to characterize these proposed actions in the report to the stakeholders?
Reviewed for accuracy · Report an issueNext question