Vendor services misconfigurations

Auto Scaling group should configure EC2 instances to require Instance Metadata Service Version 2 (IMDSv2)

Platform(s)
Compliance Frameworks
  • AWS Foundational Security Best Practices Controls
    • ,
  • CPRA
    • ,
  • iso_27001_2022
    • ,
  • iso_27002_2022
    • ,
  • Mitre ATT&CK
    • ,
  • mpa
    • ,
  • NIST 800-53

Description

Auto Scaling group is a logical grouping of instances for the purposes of automatic scaling and management. IMDS provides data about your instance that you can use to configure or manage the running instance. Version 2 of the IMDS adds new protections that weren't available in IMDSv1 to further safeguard your EC2 instances. It was detected that the Auto Scaling group {AwsAsg} has an EC2 instance with Metadata Service (IMDS) version that is not included in the launch configuration or that both IMDSv1 and IMDSv2 are enabled. More information can be found here https://docs.aws.amazon.com/securityhub/latest/userguide/autoscaling-controls.html#autoscaling-3
Need help?

Get a free Security Risk Assessment. Start today

Demo the Orca Platform

In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.

Get a Demo