Starting today, AWS Firewall Manager improves auditing capabilities for Security Groups by identifying excessively permissive rules that permit traffic from all IP ranges. With this enhancement, customers can detect and remediate 0.0.0.0/0 and ::/0 CIDRs in a Security Group using the Security Group Content Audit policy. Previously, AWS Firewall Manager provided customers with an option to audit IP addresses that fall within a defined range. This new capability further simplifies security posture management by detecting these common IP ranges.
Source:: Amazon AWS