TF 0170 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Missing security group for router.
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | network |
| Provider | Nifcloud |
| Vulnerability Type | omission |
Description
The router resource is missing an associated security group, which means there are no network access controls governing inbound or outbound traffic to and from the router.
Impact
Without a security group, the router is exposed to unrestricted network traffic, increasing the risk of unauthorized access, data breaches, or service disruptions caused by malicious actors exploiting open network paths.
Resolution
Add security group for all routers