Data at risk

Cosmos DB Accounts Unrestricted Network Access

Platform(s)
Compliance Frameworks
  • Azure CIS
    • ,
  • Brazilian General Data Protection (LGPD)
    • ,
  • CCPA
    • ,
  • coppa
    • ,
  • CPRA
    • ,
  • Data Security Posture Management (DSPM) Best Practices
    • ,
  • GDPR
    • ,
  • HITRUST
    • ,
  • iso_27001_2022
    • ,
  • iso_27002_2022
    • ,
  • Microsoft Cloud Security Benchmark
    • ,
  • Mitre ATT&CK
    • ,
  • mpa
    • ,
  • New Zealand Information Security Manual
    • ,
  • NIST 800-171
    • ,
  • NIST 800-53
    • ,
  • Orca Best Practices
    • ,
  • PDPA
    • ,
  • pipeda
    • ,
  • UK Cyber Essentials

Description

Azure Cosmos DB is a fully managed NoSQL database for modern app development. The default network access for Azure Cosmos DB - {AzureCosmosDb} is not restrict. The access to your Azure Cosmos DB accounts should be connected to specific Azure Virtual Networks (VNets) - which allow a secure network boundary for specific applications or to public IP addresses or IP address ranges, that enables connections from trusted internet services and on-premises networks. Once the firewall rules are properly configured, only clients and applications from allowed networks and/or IPs can access your Cosmos DB account resources.
Need help?

Get a free Security Risk Assessment. Start today

Personalized Demo

See Orca Security in Action

Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.

Get a Demo