RDS Cluster Deletion Protection Disabled
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | rds |
| Provider | aws |
| Vulnerability Type | omission |
Description#
RDS clusters are provisioned without deletion protection enabled, allowing them to be deleted without restriction. This configuration increases the risk of accidental or unauthorized removal of critical database resources.
Impact#
Without deletion protection, an attacker or user with sufficient permissions could delete RDS clusters, causing data loss and service outages. Such incidents can disrupt application functionality and result in significant operational and financial consequences.
Resolution#
Modify the RDS clusters to enable deletion protection.