Severity : Critical
Description: Microsoft Azure Cosmos DB accounts should not be accessible from internet and only be accessed from within a VNET.
Remediation Steps : Modify firewall and the virtual network configuration for your Cosmos DB accounts to provide access to selected networks.
Description: This control ensures that Microsoft Azure Cosmos DB accounts should not be accessible from internet other the allowed IPs/IP Ranges. firewall and the virtual network configuration protecting CosmoDB accounts must not allow policy with 0.0.0.0 and should provide access to selected networks.
...