Network misconfigurations

Network security group rule allows unrestricted incoming access to TCP port 27017 or 27018 or 27019 or 27020 (MongoDB)

Platform(s)
Compliance Frameworks

Description

An Azure Security Group acts as a virtual firewall for your instances to control inbound and outbound traffic. We identified the security group ""{AzureNetworkSecurityGroup}"" ({AzureNetworkSecurityGroup.NsgId}) is configured to allow inbound access to TCP port 27017-27020 (MongoDB) from any IP address (0.0.0.0/0 or ::/0).

  • Recommended Mitigation

    Ensure security groups in your account are configured to allow access to TCP ports 27017-27020 (MongoDB) from specific IP addresses only. More details can be found in <a href="https://learn.microsoft.com/en-us/azure/virtual-network/network-security-groups-overview" target="_blank" rel="noopener noreferrer">https://learn.microsoft.com/en-us/azure/virtual-network/network-security-groups-overview</a>

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.