Azure Mysql Insecure Tls Version
Description
Detects Azure Database for MySQL Flexible Servers configured with insecure TLS versions (below TLS 1.2). Using older TLS versions like TLS 1.0 or 1.1 exposes the database to known security vulnerabilities and may not meet compliance requirements.
Detection Strategy
• Retrieves the TLS version configuration for each Azure MySQL Flexible Server in the subscription
• Identifies the minimum TLS version allowed from the configuration value
• Reports a vulnerability if the minimum allowed TLS version is less than 1.2
• Captures the specific TLS version setting and resource ID in the vulnerability report
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.