Azure Synapse Firewall Allows Public Access
Description
Detects Azure Synapse workspaces that have firewall rules allowing unrestricted public network access. This configuration can expose the Synapse workspace to potential unauthorized access from the internet, increasing the risk of data breaches and unauthorized modifications.
Detection Strategy
• Checks if public network access is explicitly enabled for the Synapse workspace
• Verifies if the firewall rule's start and end IP addresses are configured
• Reports a vulnerability when public access is enabled and the IP range configuration is invalid or overly permissive
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan.If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.