Skip to main content

Automatic information enumeration

Description

It is possible to automatically enumerate system information such as open ports, available services and users personal data.

Impact

  • Obtain information from internal users.
  • Obtain account information from partners and suppliers.

Recommendation

Filter the information that is received through the ports avoiding the detection of services.

Threat

Anonymous attacker from the Internet.

Expected Remediation Time

⌚ 30 minutes.

Score

Default score using CVSS 3.1. It may change depending on the context of the vulnerability.

Base

  • Attack vector: N
  • Attack complexity: L
  • Privileges required: L
  • User interaction: N
  • Scope: C
  • Confidentiality: L
  • Integrity: N
  • Availability: N

Temporal

  • Exploit code madurity: X
  • Remediation level: X
  • Report confidence: X

Result

  • Vector string: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N/E:X/RL:X/RC:X
  • Score:
    • Base: 5.0
    • Temporal: 5.0
  • Severity:
    • Base: Medium
    • Temporal: Medium

Code Examples

Compliant code

Correctly configure the filters of information according to port numbers

Resources:
securityGroup1:
Properties:
GroupDescription: groupDescription1
SecurityGroupIngress:
- CidrIp: 34.229.161.227/16
IpProtocol: "tcp"
SecurityGroupEgress:
- CidrIp: 34.229.161.227/16
IpProtocol: "tcp"
Type: AWS::EC2::SecurityGroup

Non compliant code

Incorrectly configure a resource to not filter information by restricting ports

Resources:
securityGroup1:
Properties:
GroupDescription: groupDescription1
SecurityGroupIngress:
- CidrIp: 34.229.161.227/16
FromPort: 1
IpProtocol: "-1"
ToPort: 65535
SecurityGroupEgress:
- CidrIp: 34.229.161.227/16
FromPort: 8080
IpProtocol: "-1"
ToPort: 8080
Type: AWS::EC2::SecurityGroup

Requirements