Data at risk

Azure Container Registry with Unrestricted Network Access

Risk Level

Hazardous (3)

Platform(s)

Description

Azure Container Registry is a managed, private Docker registry service which is used to store and manage your private Docker container images and related artifacts. The Container Registry - {AzureContainerRegistry} is configured to be accessible over the public internet. By default, the Container Registry settings allow public access over the internet from any host on any network, which is considered a bad practice.
  • Recommended Mitigation

    It is recommended to review the Container Registry configuration and restrict public access to the Container Registry in order to reduce data leakage risks.