Protection Mechanism Failure
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-693: Protection Mechanism Failure |
| Confidence Level | Medium |
| Impact Level | Medium |
| Likelihood Level | Medium |
Description#
The Azure Key Vault resource is missing purge protection, which means deleted vaults or secrets can be permanently removed immediately. Without this setting enabled, accidental or malicious deletions cannot be recovered.
Impact#
If purge protection is not enabled, an attacker or user could permanently delete sensitive keys or secrets, making them unrecoverable. This could lead to data loss, downtime, or loss of critical access, potentially impacting business operations and security.