BlackFriday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25

- Free Preparation Discussions

HP Exam HPE6-A84 Topic 8 Question 5 Discussion

Actual exam question for HP's HPE6-A84 exam

Question #: 5
Topic #: 8

[All HPE6-A84 Questions]

Refer to the scenario.

A customer has asked you to review their AOS-CX switches for potential vulnerabilities. The configuration for these switches is shown below:

What is one recommendation to make?

ALet the RADIUS server confiqure VLANs on LAG 1 dynamically.

BUse MDS instead of SHA1 for the NTP authentication key.

CEncrypt the certificate in the TA-profile.

DCreate a control plane ACL to limit the sources that can access the switch with SSH.

Show Suggested Answer

Suggested Answer: D

According to the AOS-CX Switches Multiple Vulnerabilities1, one of the vulnerabilities (CVE-2021-41000) affects the SSH service on AOS-CX switches. This vulnerability allows an unauthenticated remote attacker to cause a denial-of-service condition on the switch by sending specially crafted SSH packets. The impact of this vulnerability is high, as it could result in a loss of management access and network disruption. Therefore, one recommendation to make is to create a control plane ACL to limit the sources that can access the switch with SSH. This way, the switch can filter out unwanted or malicious SSH traffic and reduce the risk of exploitation.

by Salome at Oct 07, 2023, 02:06 AM

Limited Time Offer

25%

Off

Get Premium HPE6-A84 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!