Key Management Errors
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-320: CWE CATEGORY: Key Management Errors |
| OWASP | A03:2017 - Sensitive Data Exposure |
| Confidence Level | Medium |
| Impact Level | Medium |
| Likelihood Level | Low |
Description#
The AWS CodeBuild project is not configured to use an encryption key, meaning build artifacts and sensitive project data are stored unencrypted. This leaves the data vulnerable to unauthorized access.
Impact#
If exploited, attackers or unauthorized users could access sensitive build information, source code, or secrets stored in the project, potentially leading to data leaks, intellectual property theft, or further compromise of your AWS environment.