TF 0430 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
SAM Simple table must have server side encryption enabled.
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | sam |
| Provider | AWS |
| Vulnerability Type | misconfiguration |
Description
The AWS SAM SimpleTable resource is configured without server-side encryption, meaning data stored in the table is not automatically encrypted at rest. This leaves sensitive information unprotected if the storage medium is accessed by unauthorized parties.
Impact
Without server-side encryption, data in the table can be read directly if compromised, increasing the risk of data breaches and exposure of confidential or regulated information. Attackers gaining access to the storage backend could retrieve unencrypted data, impacting data privacy and compliance.
Resolution
Enable server side encryption