SSL should be enforced on database connections where applicable
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | database |
| Provider | Azure |
| Vulnerability Type | omission |
Description#
Database servers are configured without enforcing SSL connections, allowing clients to connect without encryption. This exposes data in transit to potential interception or tampering.
Impact#
Without SSL enforcement, sensitive information such as credentials and application data can be intercepted or altered by attackers monitoring the network, increasing the risk of data breaches and unauthorized access.
Resolution#
Enable SSL enforcement