SYM_CONF_0267 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Insufficient Logging
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-778: Insufficient Logging |
| OWASP | A09:2021 - Security Logging and Monitoring Failures |
| Confidence Level | High |
| Impact Level | Medium |
| Likelihood Level | Low |
Description
The AWS Config aggregator is set to collect configuration data from only specific regions instead of all regions. This leaves some AWS regions unmonitored, potentially missing important changes in those areas.
Impact
If not all regions are included, unauthorized or accidental changes in unmonitored regions could go undetected, leading to blind spots in security monitoring. Attackers or misconfigurations in these regions might compromise resources without being logged or alerted.