SYM_CONF_0234 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Insufficient Logging
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-778: Insufficient Logging |
| OWASP | A09:2021 Security Logging and Monitoring Failures |
| Confidence Level | Medium |
| Impact Level | Low |
| Likelihood Level | Low |
Description
The AWS Lambda function is missing active X-Ray tracing, which means detailed execution traces are not being captured. Without this, it's harder to debug issues or monitor the function's behavior in production.
Impact
Lack of active tracing limits visibility into your Lambda's execution, making it difficult to detect performance bottlenecks, errors, or suspicious activity. This can delay incident response and troubleshooting, increasing the risk of undetected problems in your application.