Azure Data Factory Public Network Access Enabled
Description
Detects Azure Data Factory instances that have public network access enabled. Public network access allows connections from the internet to the data factory service, which may increase the risk of unauthorized access and should be disabled unless specifically required.
Detection Strategy
• Identifies a vulnerability when an Azure Data Factory has the 'public_network_access' property set to 'Enabled' (case-insensitive)
• Checks each Azure Data Factory instance in the subscription for its network access configuration
• Reports a security issue if public network access is not explicitly disabled, as this could allow connections from the internet
Severity v4.0
1.7
Low
Method ID
CSPM-BKFRO
Technique
CSPM
Target
AZURE
Technology
DATA_FACTORY
CWE ID(s)
CWE-1188Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan.If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.