Fluid Attacks Database

Description

Detects Azure Network Security Groups (NSGs) that allow unrestricted access to Microsoft SQL Server ports (1433). This misconfiguration could expose SQL Server instances to the public internet, potentially enabling unauthorized database access and brute force attacks.

Weakness:

157 - Unrestricted access between network segments

Category: Access Subversion

Detection Strategy

• Reviews each security rule in Azure Network Security Groups

• Alerts when a rule allows inbound traffic to port 1433 (SQL Server) from any source IP address (0.0.0.0/0 or *)

• Checks both TCP protocol specifically and wildcard (*) protocol settings

• Examines both source_address_prefix and source_address_prefixes fields for overly permissive settings

Free trial

Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.