Publicly accessible Google Compute instance has a critical severity vulnerability

Cette page n'est pas encore disponible en français, sa traduction est en cours.
Si vous avez des questions ou des retours sur notre projet de traduction actuel, n'hésitez pas à nous contacter.

Description

A publicly accessible Google Compute instance has one or more critical severity vulnerabilities.

Unpatched vulnerabilities can expose system weaknesses and create an entry point for attackers to gain unauthorized access to the host. This can lead to data breaches, unauthorized modifications, or control of the underlining system.

Remediation

  1. Review any associated vulnerability references or advisories.
  2. Apply the appropriate patch based on remediation guidance. If no patch is available, apply compensating controls such as disabling or removal of the vulnerable component.
  3. Assess whether this instance needs to be accessible from the internet. If not, restrict access to the instance.
PREVIEWING: alai97/reorganize-some-sections-in-dora-metrics