Incorrect Permission Assignment for Critical Resource
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-732: Incorrect Permission Assignment for Critical Resource |
| OWASP | A05:2021 - Security Misconfiguration |
| Confidence Level | Medium |
| Impact Level | Medium |
| Likelihood Level | Medium |
Description#
The IAM policy grants full administrative access (‘Action’: ‘’ and/or ‘Resource’: ‘’), allowing anyone with this policy to perform any action on any AWS resource. This overly broad permission violates the principle of least privilege.
Impact#
If exploited, an attacker or unauthorized user could take complete control of your AWS environment, including reading, modifying, or deleting resources and data. This could lead to data breaches, service disruptions, or full compromise of your cloud infrastructure.