Detections
Analytics

Ensure Cassandra Monitoring (TCP:7199) is not exposed to entire internet

HIGH

Description

Cassandra Monitoring (TCP:7199) is exposed to entire internet. Exposed ports may allow attackers to access the application listening on that port.

Remediation

In AWS Console -

  1. Sign in the AWS Console and go to the Amazon VPC console.
  2. In the navigation pane, select Security Groups.
  3. For each security group, perform the following actions:
    a) Select the security group.
    b) Select the Inbound Rules.
    c) Identify the rules to be removed.
    d) Remove the required rules.
  4. Click Save.

Policy Details

Rule Reference ID: AC_AWS_0512
CSP: AWS
Remediation Available: Yes
Domain: Infrastructure Security
Resource: aws_security_group
Resource Category: Virtual Network
Resource Type: Security Group

Frameworks