Network misconfigurations

Network Security Group allows direct public SMB access, used for CIFS traffic

Platform(s)

Description

Server Message Block (SMB) is a communication protocol intended to provide shared access to files on a network of systems. The Common Internet File System (CIFS) Protocol is a dialect of SMB. The SMB port (445), used for CIFS traffic, is open on your Network Security Group and allows all incoming traffic from the Internet. In order to keep security best practices, you should restrict access to be only from allowed IP addresses.