Network misconfigurations

Azure virtual machine allows direct access to Memcached port from the Internet

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Memcached is a general-purpose distributed memory-caching system. It is often used to speed up dynamic database-driven websites by caching data and objects in RAM to reduce the number of times an external data source (such as a database or API) must be read. The Memcached port (11211) is open on your virtual machine and allows all incoming traffic from the Internet. In order to keep security best practices, you should restrict access to be only from allowed IP addresses.
  • Recommended Mitigation

    Configure networking rule to allow incoming traffic to Memcached port from allowed IP addresses only.