dnswatchdog.iodocs
Issues

Port 7474: Neo4j

Open Neo4j port detected on a publicly accessible host.

Severity: Critical | Port: 7474

What is Neo4j?

Neo4j is a graph database that stores data as nodes and relationships rather than traditional rows and columns. It is used for social networks, recommendation engines, fraud detection, and knowledge graphs. Port 7474 serves the Neo4j Browser web interface and the HTTP API.

Why this is a problem

The Neo4j Browser on port 7474 provides a web-based interface for querying and managing the database. If exposed to the internet, attackers can access the query interface, enumerate data, and potentially extract sensitive information. Older versions of Neo4j had authentication disabled by default.

What you should do

  • Block port 7474 from the internet
  • Ensure authentication is enabled (it is on by default since Neo4j 3.0, but verify)
  • Place Neo4j behind a reverse proxy if web access is needed
  • Use a VPN for remote database management
  • Keep Neo4j updated to patch known vulnerabilities

Port 6443: Kubernetes API

Open Kubernetes API server port detected on a publicly accessible host.

Port 9042: Cassandra

Open Cassandra port detected on a publicly accessible host.

On this page

What is Neo4j?Why this is a problemWhat you should do