Aws Broker Publicly Accessible
Description
This detector identifies Amazon MQ brokers that are configured to be publicly accessible from the internet. Public accessibility of message brokers creates significant security risks by potentially exposing sensitive messaging infrastructure and data to unauthorized access from the internet.
Detection Strategy
• Scans all Amazon MQ brokers in the specified AWS region
• Checks if each broker has the 'PubliclyAccessible' setting enabled
• Reports a vulnerability if a broker is configured to allow public access from the internet
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.