Network misconfigurations

Elastic Load Balancer (ELB) allows ingress access to MySQL port 3306

Platform(s)
Compliance Frameworks
  • CCPA
  • ,
  • Data Security Posture Management (DSPM) Best Practices
  • ,
  • Mitre ATT&CK
  • ,
  • New Zealand Information Security Manual
  • ,
  • NIST 800-171
  • ,
  • NIST 800-53
  • ,
  • Orca Best Practices
  • ,
  • UK Cyber Essentials

Description

MySQL port - 3306 is used by MySQL server to listen to requests from clients. Allowing inbound traffic from all external IP addresses to MySQL is vulnerable to DoS, Buffer Overflow, and SQL Injection attacks. It is a best practice to block public access, and restrict access from specific IP addresses to port 3306.