Network misconfigurations

Elastic Load Balancer (ELB) allows ingress access to Elastic search port 9300

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

Databases are the placeholders for most sensitive and confidential information in an organization. Allowing inbound traffic from external IPv4 addresses to the database ports can lead to attacks like DoS, Brute Force, Smurf, and reconnaissance. It is a best practice to block public access, restrict the inbound traffic from specific addresses and make the connection secure.
  • Recommended Mitigation

    It is recommended to replace the source IP of the rule with a specific IP address or delete the rule.