Azure Redis Firewall Allows Public Access
Description
Detects Azure Redis Cache instances with firewall rules that allow broad public network access. Misconfigured firewall rules on Redis Cache instances can expose sensitive data to the internet and increase risk of unauthorized access.
Detection Strategy
• Checks if public network access is explicitly enabled on the Redis Cache instance
• Examines the start and end IP ranges in firewall rules
• Reports a vulnerability if firewall rules use invalid or overly permissive IP ranges while public access is enabled
• Identifies instances where both start_ip and end_ip configurations are improperly set
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.