🔥 3-day streak
ISC2 CISSP — Certified Information Systems Security Professional68 / 129
Question 68 of 129
A Java web application accepts serialized objects from client requests to restore user session state. During a security assessment, a tester crafts a malicious serialized payload that, when processed by the server, executes arbitrary system commands. The development team must remediate this vulnerability. Which approach BEST addresses the root cause?
Reviewed for accuracy · Report an issueNext question