Network misconfigurations

Ec2 instance with public IPv4 address

Platform(s)
Compliance Frameworks
  • AWS Foundational Security Best Practices Controls
  • ,
  • ISO 27701
  • ,
  • Mitre ATT&CK
  • ,
  • mpa
  • ,
  • New Zealand Information Security Manual
  • ,
  • NIST 800-171
  • ,
  • NIST 800-190
  • ,
  • NIST 800-53
  • ,
  • Orca Best Practices
  • ,
  • UK Cyber Essentials

Description

AWS EC2 instances can be assigned with a public ip, which allows the instances to connect with resources outside of the Virtual Private Cloud (VPC). It was found that the EC2 instance {AwsEc2Instance} has a public IPv4 address {AwsEc2Instance.PublicIpAddress}. Without extra security control such as Security Group or Access Control List, the instance could be accessible publicly and may be subject to attacks