Key Management Errors
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-320: CWE CATEGORY: Key Management Errors |
| OWASP | A03:2017 - Sensitive Data Exposure |
| Confidence Level | Medium |
| Impact Level | Medium |
| Likelihood Level | Low |
Description#
The MySQL server resource in your Terraform configuration does not have infrastructure encryption enabled. This means data stored on the server is not fully protected at rest, increasing the risk of sensitive information being exposed.
Impact#
If infrastructure encryption is not enabled, attackers who gain access to the underlying storage could potentially read unencrypted data, including sensitive customer or business information. This can lead to data breaches, regulatory violations, and loss of trust.