TF 0330 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Data Factory should have public access disabled, the default is enabled.
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | datafactory |
| Provider | Azure |
| Vulnerability Type | omission |
Description
Azure Data Factory resources are configured with public network access enabled by default, exposing them to the internet. This setting allows anyone with network access to potentially interact with the Data Factory instance.
Impact
If public access remains enabled, unauthorized users could discover and attempt to access or manipulate Data Factory resources, leading to potential data breaches, service disruption, or unauthorized data movement within the organization's environment.
Resolution
Set public access to disabled for Data Factory