Azure Mysql Unrestricted Access
Description
Detects Azure Network Security Groups (NSGs) that allow unrestricted internet access to MySQL database ports (3306). Having MySQL directly accessible from the internet poses a significant security risk as it could allow unauthorized access to sensitive database contents.
Detection Strategy
• Identifies NSG rules that allow inbound traffic to port 3306 (MySQL) from any source IP address ('*' or '0.0.0.0/0')
• Triggers when an NSG rule allows TCP or any (*) protocol access to MySQL port
• Examines both source_address_prefix and source_address_prefixes fields in NSG rules for overly permissive settings
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.