TF 0137 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Elasticache Replication Group uses unencrypted traffic.
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | elasticache |
| Provider | AWS |
| Vulnerability Type | omission |
Description
The ElastiCache replication group is configured to use unencrypted (plaintext) traffic between nodes, exposing sensitive data transmitted within the cluster. Without in-transit encryption, data can be intercepted and read by unauthorized parties.
Impact
If exploited, attackers with access to the network could capture and view sensitive information moving between ElastiCache nodes, leading to data breaches or exposure of confidential application data. This undermines data privacy and compliance, increasing the risk of regulatory violations.
Resolution
Enable in transit encryption for replication group