Skip to main content

Unrestricted ingress traffic leave assets exposed to remote attacks

SeverityExploitabilityProvidersCategories
HIGHHIGHAzureNETWORK

Description#

Having open ingress means that your asset is exposed to some hosts on the public internet.

  • If credentials are required to establish a connection, it still leaves open the possibility to bruteforce the credentials, or perform Denial of Service attacks.
  • If no credentials are required, or credentials have been acquired by an attacker, then the asset is fully compromised.

Impact#

Potential data exposureVisible in logsUser interaction requiredPrivileges required
TrueFalseTrueFalse
  • Denial of service
  • Possible exploitation of existing vulnerabilities

Remediation guidelines#

Only allow private addresses in the CIDR range.

References#