🔥 3-day streak
CompTIA Security+ (SY0-701)73 / 77
Question 73 of 77

A security analyst receives a critical alert from a vulnerability scanner indicating that a web server is running an outdated version of Apache with a known remote code execution vulnerability (CVE-2021-41773). The analyst verifies that the server is running Apache 2.4.51, but further investigation reveals that the specific vulnerable module (mod_cgi) has been disabled and the URI path normalization feature has been patched through a vendor-specific security update. What should the analyst's next action be?

Reviewed for accuracy · Report an issueNext question →