TF 0357 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
An Network ACL rule allows ALL ports.
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | ec2 |
| Provider | AWS |
| Vulnerability Type | misconfiguration |
Description
A Network ACL rule is configured to allow traffic on all ports, rather than restricting access to only necessary ports. This broad rule removes critical network-layer protections and increases the attack surface.
Impact
Allowing all ports through the Network ACL can enable attackers to probe and exploit any open service on the VPC, leading to unauthorized access, data breaches, or compromise of cloud resources. This can result in significant security incidents and exposure of sensitive assets.
Resolution
Set specific allowed ports