Spring Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

  1. Home
  2. Discussions
  3. CompTIA
  4. CompTIA CASP
  5. CAS-005 Discussions
  6. CAS-005 Exam Topic 3 Question 20 Discussion

CompTIA SecurityX Certification Exam CAS-005 Question # 20 Topic 3 Discussion

 CompTIA Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

CompTIA SecurityX Certification Exam CAS-005 Question # 20 Topic 3 Discussion

CAS-005 Exam Topic 3 Question 20 Discussion:
Question #: 20
Topic #: 3

A security analyst receives the following SIEM alert for review:

Time | Event

03/07/2025 UTC 13:54:06 | MACHINE: hr_talent_01.corp.local " cd " SUCCESS

03/07/2025 UTC 13:54:07 | MACHINE: hr_talent_01.corp.local " cd ../../ " SUCCESS

03/07/2025 UTC 13:54:08 | MACHINE: hr_talent_01.corp.local " sudo cat /etc/shadow " SUCCESS

Which of the following best describes the incident that occurred on the device?
A.

A file injection attack occurred on the device.

B.

An attacker viewed password hashes on the device.

C.

A sensitive file was exfiltrated from the device.

D.

A directory traversal attack occurred on the device.

Get Premium CAS-005 Questions
Actual exam question for CompTIA CAS-005 exam by Juno5437 at Apr 1, 2026, 12:17:25 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next