Network misconfigurations

VPC firewall allows public MongoDB access

Platform(s)
Compliance Frameworks

Description

GCP Firewall Rules are specific to a VPC Network. Each rule either allows or denies traffic when its conditions are met. Its conditions allow users to specify the type of traffic, such as ports and protocols, and the source or destination of the traffic, including IP addresses, subnets, and instances. More details can be found in https://cloud.google.com/vpc/docs/firewalls

  • Recommended Mitigation

    Change firewall rules to restrict TCP ports 27017-27020 (MongoDB) access to a specific IP Range.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.