A security team is running vulnerability scans against a CI/CD pipeline. The reports show that RDBMS secrets were found hardcoded in Ansible scripts. The RDBMS resides in the internal network but is accessible from a jump server that resides in a public network.
If an attacker gains access to the scripts, what is the risk exposure?
A . The Automation server is at risk of being compromised.
B. The Ansible scripts run through encrypted SSH connections.
C. The internal network is at risk of being compromised.
D. The entire CI/CD-related infrastructure is at risk.
Answer: C
Explanation:
The internal network is at risk of being compromised if an attacker gains access to the Ansible scripts, as the scripts contain hardcoded secrets for the RDBMS which is accessible from a jump server in a public network. This presents a risk as the secrets can be used to gain access to the RDBMS, and from there, the attacker could potentially gain access to the internal network. Additionally, the entire CI/CD-related infrastructure could be at risk if the attacker is able to gain access to the RDBMS, as they could potentially manipulate the data or scripts in order to cause disruption or damage.
Latest 300-910 Dumps Valid Version with 59 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund