The firewall has an inbound rule with open access
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | compute |
| Provider | DigitalOcean |
| Vulnerability Type | misconfiguration |
Description#
The firewall configuration allows inbound traffic from any IP address by using an open CIDR range (e.g., 0.0.0.0/0), exposing specified ports to the entire internet. This lack of restriction makes the service accessible to anyone, rather than just trusted sources.
Impact#
Exposing ports to the public internet enables attackers to attempt unauthorized access, perform brute-force attacks, or exploit vulnerabilities on those ports. This can lead to data breaches, service disruptions, or complete system compromise.
Resolution#
Set a more restrictive CIRDR range