The firewall has an outbound rule with open access
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | compute |
| Provider | DigitalOcean |
| Vulnerability Type | misconfiguration |
Description#
The firewall configuration allows outbound traffic to any IP address by using overly broad destination CIDR ranges such as 0.0.0.0/0. This lack of restriction exposes internal services or resources to the entire internet.
Impact#
Unrestricted outbound access can enable data exfiltration, command-and-control communications, or lateral movement by attackers if a resource is compromised. This greatly increases the risk of data leaks and unauthorized external communications, potentially exposing sensitive systems or information.
Resolution#
Set a more restrictive cidr range