Role with Administrative Privileges attached to 50+ Instances

IAM misconfigurations

Role with Administrative Privileges attached to 50+ Instances

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCM-CSA
CCPA
cis_8
CPRA
Data Security Posture Management (DSPM) Best Practices
essential_8_au
GDPR
HITRUST
iso_27001_2022
iso_27002_2022
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
PDPA
pipeda
UK Cyber Essentials

Description

Orca has detected that the Role {AwsIamRole} is attached to {AwsIamRole.InstanceProfiles.Ec2Instances|count} instances. Anyone who has access to those instances can effectively operate with the same permissions granted by this Role. This Role poses a security concern because it was found to have full administrative privileges which grants unrestricted access (Action: '*') to any resources on the account (Resource: '*'). In the event that an asset is compromised, this may potentially lead to full account takeover.

Role with Administrative Privileges attached to 50+ Instances

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS