TF 0088 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
RDS Cluster Deletion Protection Disabled
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | rds |
| Provider | aws |
| Vulnerability Type | omission |
Description
RDS clusters are provisioned without deletion protection enabled, allowing them to be deleted without restriction. This configuration increases the risk of accidental or unauthorized removal of critical database resources.
Impact
Without deletion protection, an attacker or user with sufficient permissions could delete RDS clusters, causing data loss and service outages. Such incidents can disrupt application functionality and result in significant operational and financial consequences.
Resolution
Modify the RDS clusters to enable deletion protection.