CompTIA CySA+ Practice Test

What should you do if a vulnerability is found on a vendor-appliance connected to your network?

• A. Patch the appliance yourself
• B. Contact the vendor for remediation
• C. Ignore the vulnerability
• D. Wait for a month to see if it resolves

The correct answer is: Contact the vendor for remediation

When a vulnerability is discovered on a vendor appliance connected to your network, the most appropriate action is to contact the vendor for remediation. This approach is vital for several reasons. First, vendors typically have the expertise and resources to address vulnerabilities in their products effectively. They may already be aware of the issue and have procedures in place for remediation or may provide a patch or update specifically designed to mitigate the vulnerability. Engaging with the vendor ensures that the remediation actions taken are aligned with best practices and that any potential risks associated with self-patching are avoided. Additionally, vendors maintain a comprehensive understanding of how their appliances function and the potential consequences of vulnerabilities. They are in the best position to offer guidance on risk assessment, immediate mitigations, and long-term solutions. In contrast, attempting to patch the appliance yourself could lead to unintended consequences, including system malfunctions or introducing new vulnerabilities, particularly if you are not familiar with the appliance's architecture. Ignoring the vulnerability is hazardous as it leaves your network exposed to attacks, and waiting to see if the issue resolves itself is a poor strategy that can leave your organization vulnerable for an extended period. Ultimately, engaging the vendor is a critical step in addressing vulnerabilities responsibly and effectively.