Improper Access Control
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-284: Improper Access Control |
| OWASP | A01:2021 - Broken Access Control |
| Confidence Level | Low |
| Impact Level | Medium |
| Likelihood Level | Medium |
Description#
This code configures an AWS security group to allow incoming traffic from any IP address on the public internet. Allowing unrestricted public ingress greatly increases exposure to unauthorized access.
Impact#
Attackers could directly reach and attempt to exploit your resources, potentially leading to data breaches, service disruption, or unauthorized control of your infrastructure. Exposed ports may be targeted by automated scanning and attacks, putting your systems and sensitive data at significant risk.