Elasticache Replication Group uses unencrypted traffic.
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | elasticache |
| Provider | AWS |
| Vulnerability Type | omission |
Description#
The ElastiCache replication group is configured to use unencrypted (plaintext) traffic between nodes, exposing sensitive data transmitted within the cluster. Without in-transit encryption, data can be intercepted and read by unauthorized parties.
Impact#
If exploited, attackers with access to the network could capture and view sensitive information moving between ElastiCache nodes, leading to data breaches or exposure of confidential application data. This undermines data privacy and compliance, increasing the risk of regulatory violations.
Resolution#
Enable in transit encryption for replication group