EC2 Instance IMDSV2 Is Not Enabled

Overview

Checks if EC2 Instance Metadata Service Version 2 (IMDSv2) is enabled and required. Using IMDSv2 will protect from misconfigurations and SSRF vulnerabilities. IMDSv1 will not.

Vendor

AWS

Cloud Service

EC2

EC2.8

References

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-metadata-v2-how-it-works.html

Severity

Item Types

AWS::EC2::Instance

Overview​

Vendor​

Cloud Service​

Related Controls​

References​

Severity​

Item Types​