Home
Mapping Frameworks
Azure Home
SQL Vulnerability Assessment

Azure sql_vulnerability_assessment Mappings

SQL vulnerability assessment is a service that provides visibility into your security state. The service employs a knowledge base of rules that flag security vulnerabilities. It highlights deviations from best practices, such as misconfigurations, excessive permissions, and unprotected sensitive data.

Mappings

Capability ID	Capability Description	Category	Value	ATT&CK ID	ATT&CK Name	Notes
sql_vulnerability_assessment	SQL Vulnerability Assessment	protect	minimal	T1190	Exploit Public-Facing Application	Comments This control provides recommendations to patch if SQL server is out of date and to disable unneeded features to reduce exploitable surface area. References https://docs.microsoft.com/en-us/azure/azure-sql/database/sql-vulnerability-assessment https://docs.microsoft.com/en-us/azure/azure-sql/database/sql-database-vulnerability-assessment-rules
sql_vulnerability_assessment	SQL Vulnerability Assessment	protect	minimal	T1078	Valid Accounts	Comments References https://docs.microsoft.com/en-us/azure/azure-sql/database/sql-vulnerability-assessment https://docs.microsoft.com/en-us/azure/azure-sql/database/sql-database-vulnerability-assessment-rules
sql_vulnerability_assessment	SQL Vulnerability Assessment	protect	partial	T1078.001	Default Accounts	Comments This control may provide recommendations to disable default accounts and restrict permissions for existing accounts. References
sql_vulnerability_assessment	SQL Vulnerability Assessment	protect	minimal	T1505	Server Software Component	Comments References https://docs.microsoft.com/en-us/azure/azure-sql/database/sql-vulnerability-assessment https://docs.microsoft.com/en-us/azure/azure-sql/database/sql-database-vulnerability-assessment-rules
sql_vulnerability_assessment	SQL Vulnerability Assessment	protect	partial	T1505.001	SQL Stored Procedures	Comments This control may scan for users with unnecessary access to SQL stored procedures. References
sql_vulnerability_assessment	SQL Vulnerability Assessment	protect	partial	T1068	Exploitation for Privilege Escalation	Comments This control may scan for users with unnecessary permissions and if SQL Server is out of date. References https://docs.microsoft.com/en-us/azure/azure-sql/database/sql-vulnerability-assessment https://docs.microsoft.com/en-us/azure/azure-sql/database/sql-database-vulnerability-assessment-rules
sql_vulnerability_assessment	SQL Vulnerability Assessment	protect	minimal	T1112	Modify Registry	Comments This control may scan for any stored procedures that can access the Registry and checks that permission to execute those stored procedures have been revoked from all users (other than dbo). References https://docs.microsoft.com/en-us/azure/azure-sql/database/sql-vulnerability-assessment https://docs.microsoft.com/en-us/azure/azure-sql/database/sql-database-vulnerability-assessment-rules