Azure No Zonal Redundancy
Description
Detects Azure Virtual Machine Scale Sets that are configured to run in only a single availability zone, making them vulnerable to zone-wide failures. This configuration reduces fault tolerance and could lead to service disruption if the single zone experiences an outage.
Detection Strategy
• Scans each Virtual Machine Scale Set in the Azure subscription
• Checks if the VMSS is configured with exactly one availability zone
• Reports a vulnerability if a VMSS is deployed to only a single zone instead of being distributed across multiple zones
Severity v4.0
1.7
Low
Method ID
CSPM-CR6TN
Technique
CSPM
Target
AZURE
Technology
VM_SCALE_SET
CWE ID(s)
CWE-1188Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan.If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.