TF 0311 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Unencrypted S3 bucket.
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | s3 |
| Provider | AWS |
| Vulnerability Type | omission |
Description
The S3 bucket is not configured with server-side encryption, leaving stored data unprotected at rest. This means data in the bucket could be accessed in plaintext if security controls fail.
Impact
If the bucket is compromised, attackers can directly read all stored objects without needing to bypass any encryption, increasing the risk of data theft, regulatory violations, and potential reputational harm to the organization.
Resolution
Configure bucket encryption