Disable serial port connectivity for all instances
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | compute |
| Provider | |
| Vulnerability Type | misconfiguration |
Description#
Enabling serial port access on Google Compute Engine instances bypasses standard network security controls, allowing unmanaged external connections to the instance console. This configuration may expose the serial console to unauthorized access.
Impact#
If exploited, attackers could gain direct console-level access to virtual machines, potentially allowing them to execute commands, access sensitive data, or disrupt system operations, leading to compromise or loss of control over affected instances.
Resolution#
Disable serial port access