RDS Deletion Protection Disabled
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | rds |
| Provider | aws |
| Vulnerability Type | omission |
Description#
RDS database instances are provisioned without deletion protection enabled, allowing them to be deleted without additional safeguards. This configuration increases the risk of accidental or unauthorized removal of critical database resources.
Impact#
If exploited, attackers or users with sufficient privileges could delete RDS instances, leading to potential loss of data and service disruption. This could result in downtime, loss of business-critical information, and increased recovery time and costs.
Resolution#
Modify the RDS instances to enable deletion protection.