TF 0520 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Neptune logs export should be enabled
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | neptune |
| Provider | AWS |
| Vulnerability Type | omission |
Description
AWS Neptune clusters do not have audit logging enabled by default. Without enabling export logs, actions and changes within the Neptune instance are not recorded for audit purposes, reducing visibility into usage and access.
Impact
Lack of audit logs makes it difficult to detect unauthorized access, investigate incidents, or comply with security policies. This can allow malicious activities or configuration changes to go unnoticed, increasing the risk of data breaches and regulatory non-compliance.
Resolution
Enable export logs