🔥 3-day streak
ISC2 CC — Certified in Cybersecurity141 / 145
Question 141 of 145
A security analyst at a mid-sized company reviews a report showing that a public-facing web server is running an outdated version of software with a known flaw that could allow remote code execution. The report also notes that automated scanning tools operated by attackers routinely probe the internet for this exact flaw. In risk management terms, how should the analyst classify the outdated software with the known flaw?
Reviewed for accuracy · Report an issueNext question