Azure virtual machine with Windows distribution allows direct RDP access from the Internet

Network misconfigurations

Azure virtual machine with Windows distribution allows direct RDP access from the Internet

Risk Level

Hazardous (3)

Platform(s)

Compliance Frameworks

CCPA
ISO/IEC 27001
Microsoft Cloud Security Benchmark
Mitre ATT&CK v12
New Zealand Information Security Manual
NIST 800-53
Orca Best Practices
UK Cyber Essentials

Description

Remote Desktop Protocol (RDP) allows a user to connect to another computer ,with Windows operating systems, over a network connection. The RDP port (3389) is open on your Windows virtual machine and allows all incoming traffic from the Internet. In order to keep security best practices, you should restrict access to be only from allowed IP addresses.

Recommended Mitigation

Configure networking rule to allow incoming RDP traffic from allowed IP addresses only.

Azure virtual machine with Windows distribution allows direct RDP access from the Internet

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS