EC2 Instance Elasticsearch (9200/9300) Ports Open to Public

Tenacity Id

Risk Level

Categories

security-group-015

4

Last Updated:

April 21, 2022

An assigned AWS Security Group allows public access to the Elasticsearch port (9200 & 9300). Public access to this port could expose data to unauthorized or unintended applications, users, or malicious actors. Remove or restrict the inbound rule allowing Elasticsearch (port 9200 & 9300) in this Security Group.