257 – Lack of protection against deletion - EC2

Description

Instances do not have the termination/removal protection option enabled.

Impact

- Delete or terminate instances by accident. - Lose of EBS data.

Recommendation

Ensure that instances have Termination Protection safety feature enabled.

Threat

External attacker with AWS credentials.

Expected Remediation Time

30 minutes.

Score 4.0

Default score using CVSS 4.0. It may change depending on the context of the src.

Base 4.0

• Attack vector: N
• Attack complexity: L
• Attack Requirements: N
• Privileges required: H
• User interaction: N
• Confidentiality (VC): N
• Integrity (VI): N
• Availability (VA): H
• Confidentiality (SC): N
• Integrity (SI): N
• Availability (SA): N

Threat 4.0

• Exploit maturity: P

Requirements

• 186 - Use the principle of least privilege
• 265 - Restrict access to critical processes

Fixes

• Aws

Last updated

2024/02/18