Security Group Telnet (23) Port Open to Public

Tenacity Id

Risk Level

Categories

security-group-010

4

Last Updated:

April 21, 2022

An unused AWS Security Group allows public access to Telnet port (23). Telnet is not encrypted and transmits data in plaintext. Unencrypted data sent via Telnet could be exposed to unauthorized or unintended applications, users, or malicious actors. Unused Security Groups should be removed, or if re-assigned, remove or restrict the inbound rule allowing Telnet (port 23) in this Security Group.