Assess the CertsIQ’s updated Secure-Software-Design exam questions for free online practice of your WGU Secure Software Design (D487, KEO1) test. Our Secure Software Design dumps questions will enhance your chances of passing the WGU Certificate Programs certification exam with higher marks.
The software security team has been tasked with assessing a document management application that has been in use for many years and developing a plan to ensure it complies with organizational policies. Which post-release deliverable is being described?
Using a web-based common vulnerability scoring system (CVSS) calculator, a security response team
member performed an assessment on a reported vulnerability in the company's claims intake component. The
base score of the vulnerability was 3.5 and changed to 5.9 after adjusting temporal and environmental metrics.
Which rating would CVSS assign this vulnerability?
The security team has received notice of an insecure direct object reference vulnerability in a third-party component library that could result in remote code execution. The component library was replaced and is no longer being used within the application. How should the organization remediate this vulnerability?
Which secure coding best practice says to use well-vetted algorithms to ensure that the application uses random identifiers, that identifiers are appropriately restricted to the application, and that user processes are fully terminated on logout?
While performing functional testing of the ordering feature in the new product, a tester noticed that the order
object was transmitted to the POST endpoint of the API as a human-readable JSON object.
How should existing security controls be adjusted to prevent this in the future?
© Copyrights CertsIQ 2026. All Rights Reserved
We use cookies to ensure that we give you the best experience on our website (CertsIQ). If you continue without changing your settings, we'll assume that you are happy to receive all cookies on the CertsIQ.
Full Access to 121 Questions