Risk Details

Back to Risks
Unrestricted Inbound Access to GPU Training Cluster
A security group is configured to allow unrestricted inbound traffic (0.0.0.0/0) on a sensitive port used for managing a high-performance GPU cluster for AI model training.
High Severity
Open
AWS
Affected Resources
  • sg-0123456789abcdef0 (gpu-training-cluster-sg)
Restrict Security Group Ingress
  1. Identify the source IP ranges that require access to the management port.
  2. Modify the security group ingress rules to only allow traffic from these specific IP ranges.
  3. Remove the rule that allows traffic from 0.0.0.0/0.
  4. Verify that legitimate users and services can still access the cluster.