Network misconfigurations

AWS EC2 instance allows public ingress access on MySQL port 3306


MySQL port - 3306 is used by MySQL server to listen requests from clients. Allowing inbound traffic from all external IP addresses to MySQL is vulnerable to DoS, Buffer Overflow, SQL Injection attacks. It is a best practice to block public access, and restrict access from specific IP addresses to port 3306.