Ensure no security groups allow ingress from 0.0.0.0/0 to ALL ports and protocols
HIGH
Description
It is recommended that no security group allows unrestricted ingress access. Exposed ports may allow attackers to access the application listening on that port.
Remediation
In AWS Console -
Sign in the AWS Console and go to the Amazon VPC console.
In the navigation pane, select Security Groups.
For each security group, perform the following actions: a) Select the security group. b) Select the Inbound Rules. c) Identify the rules to be removed. d) Remove the required rules.