AMI Is Shared Externally

Overview

An Amazon Machine Image (AMI) is shared with untrusted AWS accounts (i.e. accounts not known to Cloud Defense). This could indicate a data exposure if the sharing is not intended.

Vendor

AWS

Cloud Service

EC2

Input

{"trustAllConnectedAccounts":{"label":"Trust All Known Accounts","value":true,"type":"boolean","helpText":"If true, all AWS Accounts known to Cloud Defense will be trusted and therefore ignored if found by this check, in addition to any accounts in Trusted Accounts."},"trustedAccountIds":{"label":"Trusted AWS Account IDs","helpText":"A list of AWS Account IDs to trust and therefore ignore if found by this check.","value":[],"type":"string[]"}}

Severity

Item Types

AWS::EC2::Image

Overview​

Vendor​

Cloud Service​

Input​

Severity​

Item Types​