An outbound firewall rule allows traffic to /0.
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | compute |
| Provider | |
| Vulnerability Type | misconfiguration |
Description#
An outbound firewall rule is configured with a destination range of 0.0.0.0/0, allowing egress traffic to any IP address on the internet. This overly broad rule fails to limit network access to only necessary destinations.
Impact#
Unrestricted outbound access can allow compromised resources to communicate freely with external servers, facilitate data exfiltration, and enable attackers to establish command-and-control channels, increasing the risk of data breaches and unauthorized activities.
Resolution#
Set a more restrictive cidr range