MEDIUM
Source
CloudSploit
ID
open-rfc-1918

Open RFC 1918

Ensures EC2 security groups are configured to deny inbound traffic from RFC-1918 CIDRs

RFC-1918 IP addresses are considered reserved private addresses and should not be used in security groups.

Modify the security group to deny private reserved addresses for inbound traffic