Network misconfigurations

Ec2 instance with public IPv4 address

Platform(s)
Compliance Frameworks
  • AWS Foundational Security Best Practices Controls
    • ,
  • ISO 27701
    • ,
  • Mitre ATT&CK
    • ,
  • mpa
    • ,
  • New Zealand Information Security Manual
    • ,
  • NIST 800-171
    • ,
  • NIST 800-190
    • ,
  • NIST 800-53
    • ,
  • Orca Best Practices
    • ,
  • UK Cyber Essentials

Description

AWS EC2 instances can be assigned with a public ip, which allows the instances to connect with resources outside of the Virtual Private Cloud (VPC). It was found that the EC2 instance {AwsEc2Instance} has a public IPv4 address {AwsEc2Instance.PublicIpAddress}. Without extra security control such as Security Group or Access Control List, the instance could be accessible publicly and may be subject to attacks
Need help?

Get a free Security Risk Assessment. Start today

Personalized Demo

See Orca Security in Action

Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.

Get a Demo