Network misconfigurations

Default VPC is being used to launch an EC2 instance

Risk Level

Informational (4)



AWS EC2 instance is a virtual server, that provides secure, resizable compute capacity in the cloud. EC2 instance runs in a Virtual Private Cloud (VPC) that is logically isolated from other virtual networks outside of your AWS account. A default VPC is automatically created when you first provision related resources and is suitable for a quick start. The default VPC is used when an instance is launched without a particular subnet. It was found that the default VPC is being used for launching your EC2 instance {AwsEc2Instance}. The default VPC comes with a default configuration that lacks the proper security controls. Your network should be well configured and follow the least privilege principle, meaning only the necessary privileges are granted. Therefore, the default VPC will not suit your needs.