Azure_VirtualNetworks_153

VirtualMachine with administrative service: CiscoSecure,websm (TCP:9090) is exposed to a wide network scope

Description

Administrative access to instances is an attack vector that should be restricted to prevent common exploits. This rule detects network settings that may expose instances to RDP, SSH etc.

Remediation

Delete the rules that allow permissive Remote Desktop access and limit the scope only for a trusted bastion server within the VNET using non public IP addresses.

Service

Networking

Severity

Medium

Compliance

Mapping

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!