Data protection

Bucket Allows Unencrypted Uploads

Risk Level

Informational (4)



An S3 bucket is using a policy that allows uploading unencrypted objects. If an adversary manages to compromise this bucket, they will have access to the potentially sensitive information stored in the unencrypted object.
  • Recommended Mitigation

    Edit the {AwsS3Bucket} bucket's policy to prevent uploads of unencrypted objects.