IAM misconfigurations

Instance Profile with Administrative Privileges

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

Orca has detected that the instance profile {AwsIamInstanceProfile} was granted full administrative privileges on the account. These privileges grant them the ability to perform all actions on any resource in the account.
  • Recommended Mitigation

    Prefer using more explicit policies that adhere to the principle of least privilege.