TF 0196 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Enable local-disk encryption for EMR clusters.
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | emr |
| Provider | AWS |
| Vulnerability Type | misconfiguration |
Description
The EMR cluster is not configured to encrypt data stored on its local disks, leaving sensitive information at rest unprotected. Without local-disk encryption, data on EMR instance storage remains readable to anyone with access to the underlying hardware or snapshots.
Impact
If exploited, attackers or unauthorized individuals with access to the EMR cluster's storage could retrieve unencrypted sensitive data, leading to data breaches, regulatory violations, and potential compromise of confidential business or customer information.
Resolution
Enable local-disk encryption for EMR cluster