Ensure MQ Broker is not publicly exposed
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | mq |
| Provider | AWS |
| Vulnerability Type | misconfiguration |
Description#
The MQ broker is configured to be publicly accessible, allowing connections from any external network. This exposes the messaging service to the internet, increasing the risk of unauthorized access.
Impact#
If exploited, attackers could connect to the MQ broker over the internet, potentially intercepting, modifying, or injecting messages. This may lead to data breaches, service disruptions, or further compromise of internal systems.
Resolution#
Disable public access when not required