Free ServiceNow CAD Actual Exam Questions - Question 4 Discussion

It’s D, queries often happen outside strict app controls and can’t be fully blocked.

Maybe D, queries often bypass strict app controls unlike create/update/delete.

B imo, deletes often require stronger backend controls to prevent accidental data loss, and apps might not fully restrict all delete operations compared to updates or creations which can be more tightly managed.

Actually, I’d rule out C. Creating records usually needs strict app-level control to prevent unwanted data entry, while queries can be filtered or limited more flexibly by the application logic.

D imo, since queries just pull data and apps usually can't fully control what gets queried, unlike create, update, or delete which need explicit permissions.

But can’t apps at least limit query results? Maybe Create is harder to control?

Maybe D is the best pick here. Updates, deletes, and creates usually require explicit permissions because they modify data. Querying, on the other hand, mostly just reads data and is often left more open or controlled differently, like through database roles rather than strict app-level access. So it stands out as the operation that can’t be fully locked down just by application access controls.

Makes sense that Query is less controllable since it’s mostly read-only and often open to users. I’d say D fits best here.

D vs C? I’m thinking Query can’t be controlled as strictly by app access.