Detections
Analytics

Ensure no security groups is wide open to public, that is, allows traffic from 0.0.0.0/0 to ALL ports and protocols

HIGH

Description

It is recommended that no security group allows unrestricted ingress access. Exposed ports may allow attackers to access the application listening on that port.

Remediation

In AWS Console -

  1. Sign in the AWS Console and go to the Amazon VPC console.
  2. In the navigation pane, select Security Groups.
  3. For each security group, perform the following actions:
    a) Select the security group.
    b) Select the Inbound Rules.
    c) Identify the rules to be removed.
    d) Remove the required rules.
  4. Click Save.

Policy Details

Rule Reference ID: AC_AWS_0275
CSP: AWS
Remediation Available: Yes
Domain: Infrastructure Security
Resource: aws_security_group
Resource Category: Virtual Network
Resource Type: Security Group

Frameworks