H3-2022-0088

Public Access to Amazon EC2 AMI

Category	SECURITY_MISCONFIGURATION
Base Score	4.5

Description

An Amazon EC2 AMI (Amazon Machine Image) in your AWS account is publicly accessible, either to everyone or to any authenticated (cross-account) AWS user.

Impact

Attackers may be able to access sensitive data in the EC2 AMI such as browser history and stored passwords

References

• AWS Best Practice - Share EC2 AMI with Only Specific AWS Accounts