Network security group rule allows unrestricted outgoing access to the Internet to broad ports range

Network misconfigurations

Network security group rule allows unrestricted outgoing access to the Internet to broad ports range

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

CCPA
CPRA
Data Security Posture Management (DSPM) Best Practices
ISO/IEC 27001
Microsoft Cloud Security Benchmark
Mitre ATT&CK
mpa
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
Orca Best Practices
PDPA
UK Cyber Essentials

Description

Azure network security group rules allow or deny traffic when its conditions are met. The rules allow users to specify the type of traffic, such as ports ,protocols, source and destination of the traffic, including IP addresses, subnets, and instances. {AzureNetworkSecurityGroupRule} allows unrestricted access to the Internet to broad ports range.

Recommended Mitigation

Restrict outgoing access to the Internet. Allow traffic to allowed IP addresses and ports only.

Network security group rule allows unrestricted outgoing access to the Internet to broad ports range

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS