What are two of the most widely exposed vulnerabilities currently listed by the Open Web Applications Security Project (OWASP)? (Choose two.)

IT Questions BankCategory: IoT SecurityWhat are two of the most widely exposed vulnerabilities currently listed by the Open Web Applications Security Project (OWASP)? (Choose two.)

What are two of the most widely exposed vulnerabilities currently listed by the Open Web Applications Security Project (OWASP)? (Choose two.)

  • malware
  • phishing
  • spam
  • username enumeration
  • account lockout

Explanation: According to Open Web Applications Security Project (OWASP), the most widely exposed vulnerabilities are these:

  • Username enumeration – The threat actor is able to find valid usernames through the authentication application.
  • Weak passwords – The threat actor uses default passwords which have not been changed or is able to set account passwords that the threat actor chooses.
  • Account lockout – The threat actor finds a way to attempt to authenticate many times after multiple failed attempts.
  • Lack of multifactor authentication – It is easier for a threat actor to gain access when only one form of authentication is required.
  • Insecure 3rd party components – As vulnerabilities are discovered, they often become patched. When components such as Secure Shell (ssh), BusyBox, or web servers are not kept up to date, the threat actor might expose these vulnerabilities and gain access.

Exam with this question: IoT Security 1.1 Chapter 5 Quiz Answers

Subscribe
Notify of
guest

0 Comments
Inline Feedbacks
View all comments