SYM_CONF_0149 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Inadequate Encryption Strength
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-326: Inadequate Encryption Strength |
| OWASP | A03:2017 - Sensitive Data Exposure |
| Confidence Level | Low |
| Impact Level | Low |
| Likelihood Level | Low |
Description
The Data Fusion instance is not configured to enable Stackdriver Monitoring, which means important operational and security metrics are not being collected or monitored.
Impact
Without Stackdriver Monitoring, issues such as performance bottlenecks, configuration errors, or potential security incidents may go undetected, making it harder to respond to problems or investigate suspicious activity. This could lead to prolonged outages or compromise of sensitive data.