Data at riskAWS ECR repository is publicly accessible
Platform(s)
Compliance Frameworks
- Brazilian General Data Protection (LGPD) ,
- CCPA ,
- CPRA ,
- GDPR ,
- HITRUST ,
- ISO 27701 ,
- iso_27001_2022 ,
- iso_27002_2022 ,
- Mitre ATT&CK ,
- NIST 800-171 ,
- NIST 800-53 ,
- Orca Best Practices ,
- PDPA ,
- UK Cyber Essentials
Description
We have found that the AWS ECR repository - {AwsEcrRepository} is publicly accessible. AWS ECR - Amazon Elastic Container Registry is a managed container image registry service. AWS ECR supports private repositories with AWS IAM resource-based permissions. This is done so that only certain users or AWS EC2 instances will have access to your container repositories and images.
Demo the Orca Platform
In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.