Network misconfigurations

Security group allows inbound access to TCP port 9200 or port 9300 (Elasticsearch)

Platform(s)
Compliance Frameworks

Description

An AWS Security Group acts as a virtual firewall for your instances to control inbound and outbound traffic. We identified the security group ""{AwsEc2SecurityGroup}"" ({AwsEc2SecurityGroup.GroupId}) is configured to allow inbound access to TCP port 9200 (Elasticsearch HTTP traffic) or port 9300 (Elasticsearch inter-node communication) from any IP address (0.0.0.0/0 or ::/0).
Need help?

Get a free Security Risk Assessment. Start today

Orca Security Demo Demo the Orca Platform-> In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.