Network misconfigurations

Amazon MQ broker is publicly accessible

Platform(s)
Compliance Frameworks

Brazilian General Data Protection (LGPD), CCPA, cis_8, CPRA, GDPR, HITRUST, ISO 27701, iso_27001_2022, iso_27002_2022, Mitre ATT&CK, mpa, New Zealand Information Security Manual, NIST 800-171, NIST 800-53, Orca Best Practices, PDPA, UK Cyber Essentials

Description

Amazon MQ is a managed message broker service for Apache ActiveMQ and RabbitMQ that allows setting up and operating message brokers. It was detected that MQ broker {AwsMqBroker} is publicly accessible, which means every machine on the Internet can reach it through their public endpoints. It will increase the risk of malicious activity such as cross-site scripting(XSS), clickjacking and DDoS attacks.