Authentication

AWS S3 Bucket Allow Access to Any AWS Authenticated User

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

The bucket's ACL Grants allow access to any user with valid AWS credentials. This allows unknown users to access all the data stored on the bucket
  • Recommended Mitigation

    Edit the bucket's ACL Grant to only allow access to known parties