Description

Some RDS Cluster or Instances are not defined inside a Database Subnet Group.

Impact

Access to RDS services in a insecure way from the Internet.

Recommendation

Ensure that all RDS instances belong to a Database Subnet Group.

Threat

Authenticated attacker from the Internet.

Expected Remediation Time

⏱️ 90 minutes.

Requirements

Fixes