Severity Framework
CCSS (Common Configuration Scoring System) is a set of measures used to determine the severity of the rule.
Snyk CCSS
Rule category
Each rule is associated with a high-level category. For example IAM, Container, Monitoring, Logging, Network, etc.
Monitoring/ Vulnerabilities
Is your environment affected by this misconfiguration?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsFrameworks
CIS-AzureCSA-CCM
- Snyk IDSNYK-CC-00547
- creditSnyk Research Team
Description
Administrators will not be automatically notified, which can lead to a time delay in identifying risks and taking corrective measures.
How to fix?
Set properties.recurringScans.emailSubscriptionAdmins to true.
Set recurring_scans.email_subscription_admins to true.
Example Configuration
resource "azurerm_mssql_server_vulnerability_assessment" "allowed" {
server_security_alert_policy_id = azurerm_mssql_server_security_alert_policy.example547.id
storage_container_path = "${azurerm_storage_account.example547.primary_blob_endpoint}${azurerm_storage_container.example547.name}/"
storage_account_access_key = azurerm_storage_account.example547.primary_access_key
recurring_scans {
enabled = true
email_subscription_admins = true
emails = [
"email@example1.com",
"email@example2.com"
]
}
}