A security analyst performs a vulnerability scan. Based on the metrics from the scan results, the analyst must prioritize which hosts to patch. The analyst runs the tool and receives the following output:

CVE: $($Vulnerability Name$)$ Metrics

host$01$ CVE$-2003-99992$:

hoBt$02$ CVE$-2004-99993$: $($TjBeP$)$

CVE$-2007-99996$:

host$03$

$($NarrowStairs$)$

CVE$-2009-99998$:

$$Topendoor$$

DDS: AEX: NOA

PCE$2$DX:HV$1$

UDD: NOA

RCE:

Denial of service vulnerability

Remote code

Unauthorized disclosure of data vulnerability

Vulnerability is being exploited actively exploited

NOA: No authentication required

HVI: Host is a high value target

HEX: Host $18$ externally available to public Internet

Which of the following hosts should be patched first, based on the metrics?

$$ A$.$

nostu?

$8.$

host$02$

$$ C$.$

host$03$

$0.$

host$04$