RDS DB cluster is using default ports

Network misconfigurations

RDS DB cluster is using default ports

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

AWS Foundational Security Best Practices Controls
HITRUST
NIST 800-53

Description

Applications that use default ports are more prone to be attacked. Using a default port can allow attackers to learn more information about the application and may lead to further exploitation. We detected that RDS DB cluster {AwsRdsDbCluster} is using a default port - {AwsRdsDbCluster.Port}. Using non default ports helps protect the cluster from unauthorized access.

Recommended Mitigation

We recommend to change the used port in the RDS DB cluster to a non default port. For more information on how to change the port: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-fsbp-controls.html#fsbp-rds-23

RDS DB cluster is using default ports

Description

Need help?