TF 0285 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
S3 Data should be versioned
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | s3 |
| Provider | AWS |
| Vulnerability Type | omission |
Description
S3 buckets are configured without versioning enabled, meaning object changes or deletions permanently overwrite or remove previous data with no way to recover prior versions.
Impact
If an object is accidentally or maliciously deleted or modified, the original data cannot be restored, increasing the risk of data loss or service disruption and potentially impacting business continuity or compliance requirements.
Resolution
Enable versioning to protect against accidental/malicious removal or modification