PCI DSS Compliance : Database Reachable from the Internet

high Nessus Plugin ID 57581

Synopsis

Nessus has determined that this host is NOT COMPLIANT with PCI DSS requirements.

Description

The remote host is running a database server that is reachable from the Internet. This violates PCI DSS, section 1.3.7.

Solution

Filter incoming traffic to this port to ensure the database server is not reachable from the Internet.

See Also

https://www.pcisecuritystandards.org/

https://en.wikipedia.org/wiki/PCI_DSS

Plugin Details

Severity: High

ID: 57581

File Name: pci_reachable_database.nasl

Version: 1.13

Type: summary

Published: 1/17/2012

Updated: 4/27/2020

Supported Sensors: Nessus

Risk Information

CVSS Score Rationale: Score from an in depth analysis done by tenable

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS Score Source: manual

CVSS v3

Risk Factor: High

Base Score: 7.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Vulnerability Information

Required KB Items: Settings/PCI_DSS

Excluded KB Items: Settings/PCI_DSS_local_checks