Cognitive Search service public network access is enabled Affecting Search service in Azure

Snyk CCSS

Network / Public Access

Is your enviroment affected by this misconfiguration?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Frameworks

CIS-Controls ISO-27001 SOC-2

Snyk ID SNYK-CC-00576
credit Snyk Research Team

Report a new misconfiguration Found a mistake?

Description

Public access to Azure Cognitive Search exposes the service to unnecessary risks.

How to fix?

Set properties.publicNetworkAccess to disabled.

ARM

searchservices

Terraform

azurerm_search_service

References

Security overview for Azure Cognitive Search