Azure Oracle Unrestricted Access
Description
Detects Azure Network Security Group (NSG) rules that allow unrestricted public access to Oracle database ports (1521). Such open access from the internet to database ports creates significant security risks by potentially exposing database instances to unauthorized access and attacks.
Detection Strategy
• Identifies Network Security Group rules that allow inbound traffic to port 1521
• Checks if the rule's source address is unrestricted (like '0.0.0.0/0', '*', 'Internet', or '/0')
• Verifies if the rule allows TCP or all (*) protocols
• Reports a vulnerability if any NSG rule allows unrestricted public access to the Oracle database port
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.