Publicly accessible EC2 contains critical vulnerabilities found in CISA KEV with greater than 15 days exposure time

ec2
이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

Unpatched vulnerabilities can increase the likelihood of exposing system weaknesses creating an entry point for attackers to gain unauthorized access to the host. This can lead to data breaches, unauthorized modifications, or control of the underlining system.

Remediation

  1. Review any associated vulnerability references or advisories.
  2. Apply the appropriate patch based on remediation guidance. If no patch is available, apply compensating controls such as disabling or removal of the vulnerable component.
  3. Assess whether this instance needs to be accessible from the internet. If not, restrict access to the instance.
PREVIEWING: brett.blue/embedded-collector-release