Detections
Analytics

Ensure Unknown Port is not exposed to the entire internet

HIGH

Description

Unknown Port is exposed to the entire internet. Exposed ports may allow attackers to access the application listening on that port.

Remediation

In AWS Console -

  1. Sign in the AWS Console and go to the Amazon VPC console.
  2. In the navigation pane, select Security Groups.
  3. For each security group, perform the following actions:
    a) Select the security group.
    b) Select the Inbound Rules.
    c) Identify the rules to be removed.
    d) Remove the required rules.
  4. Click Save.

Policy Details

Rule Reference ID: AC_AWS_0276
CSP: AWS
Remediation Available: Yes
Domain: Infrastructure Security
Resource: aws_security_group
Resource Category: Virtual Network
Resource Type: Security Group

Frameworks