TF 0339 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
SSL connections to a SQL database instance should be enforced.
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | sql |
| Provider | |
| Vulnerability Type | omission |
Description
The SQL database instance is configured to allow unencrypted connections, meaning data sent between clients and the database can travel in plaintext. This exposes sensitive information to interception if network traffic is captured.
Impact
Without enforced SSL, attackers who intercept network traffic could read credentials, queries, or sensitive data transmitted to and from the database, leading to data leaks, account compromise, or broader breaches within the application environment.
Resolution
Enforce SSL for all connections