Aws Fixes

• 109 – Unrestricted access between network segments - RDS
• 165 – Insecure service configuration - AWS
• 177 – Insecure service configuration - Security Groups
• 181 – Insecure service configuration - DynamoDB
• 202 – Unauthorized access to files - Debug APK
• 203 – Unauthorized access to files - S3 Bucket
• 214 – Business information leak - Credentials
• 224 – Business information leak - AWS
• 241 – Authentication mechanism absence or evasion - AWS
• 246 – Non-encrypted confidential information - DB
• 247 – Non-encrypted confidential information - AWS
• 250 – Non-encrypted hard drives
• 252 – Automatic information enumeration - Open ports
• 253 – Automatic information enumeration - AWS
• 256 – Lack of protection against deletion - RDS
• 257 – Lack of protection against deletion - EC2
• 258 – Lack of protection against deletion - ELB
• 259 – Lack of protection against deletion - DynamoDB
• 277 – Weak credential policy - Password Expiration
• 281 – Use of an insecure channel - AWS
• 325 – Excessive privileges - Wildcards
• 333 – Insecure service configuration - EC2
• 334 – Insecure service configuration - IAM
• 335 – Insecure service configuration - Bucket
• 363 – Weak credential policy - Password strength
• 364 – Weak credential policy - Temporary passwords
• 372 – Use of an insecure channel - HTTP
• 378 – Non-encrypted confidential information - Hexadecimal
• 394 – Insufficient data authenticity validation - Cloudtrail Logs
• 396 – Insecure service configuration - KMS
• 399 – Security controls absence - Monitoring
• 400 – Traceability Loss - AWS
• 406 – Non-encrypted confidential information - EFS
• 407 – Non-encrypted confidential information - EBS Volumes
• 408 – Traceability Loss - API Gateway
• 409 – Non-encrypted confidential information - DynamoDB
• 411 – Insecure encryption algorithm - Default encryption
• 430 – Serverless - one dedicated IAM role per function
• 433 – Non-encrypted confidential information - Redshift Cluster
• 024 – Unrestricted access between network segments - AWS
• 031 – Excessive privileges - AWS
• 070 – Insecure service configuration - ELB
• 005 – Privilege escalation
• 050 – Guessed weak credentials
• 073 – Improper authorization control for web services - RDS
• 047 – Automatic information enumeration
• 016 – Insecure encryption algorithm - SSL/TLS
• 099 – Non-encrypted confidential information - S3 Server Side Encryption