IAM misconfigurations

Role with Administrative Privileges attached to 50+ Instances

Risk Level

Imminent Compromised (2)

Compliance Frameworks


Orca has detected that the Role {AwsIamRole} is attached to {AwsIamRole.InstanceProfiles.Ec2Instances|count} instances. Anyone who has access to those instances can effectively operate with the same permissions granted by this Role. This Role poses a security concern because it was found to have full administrative privileges which grants unrestricted access (Action: '*') to any resources on the account (Resource: '*'). In the event that an asset is compromised, this may potentially lead to full account takeover.