SYM_CONF_0280 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Insufficient Logging
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-778: Insufficient Logging |
| OWASP | A09:2021 - Security Logging and Monitoring Failures |
| Confidence Level | Medium |
| Impact Level | Low |
| Likelihood Level | Low |
Description
Your AWS DocumentDB cluster does not have auditing enabled, meaning activity logs are not being exported to CloudWatch. Without this, you lack visibility into who is accessing or modifying your database.
Impact
If auditing is not enabled, suspicious or unauthorized actions could go undetected, making it difficult to investigate security incidents, meet compliance requirements, or respond to potential breaches. This lack of monitoring can leave your data and organization at risk.