Key Management Errors
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-320: CWE CATEGORY: Key Management Errors |
| OWASP | A03:2017 - Sensitive Data Exposure |
| Confidence Level | Medium |
| Impact Level | Medium |
| Likelihood Level | Medium |
Description#
The AWS EBS (Elastic Block Store) volume encryption is disabled, which means data stored on these volumes is not protected at rest. This leaves sensitive data vulnerable if the storage is accessed without authorization.
Impact#
If an attacker gains access to the underlying storage, they could read unencrypted data, leading to possible exposure of confidential information such as customer records or application secrets. This could result in data breaches, regulatory violations, and loss of trust.