Lambda Function Has Risky Permissions

Overview

Serverless functions should not have excessive privileges, especially administrative privileges. This is an extension of the IAM excessive privilege control objective as applied specifically to FaaS workloads. Serverless functions should always have resource constraints applied and should never have known privilege escalation entitlements.

Vendor

AWS

Cloud Service

Lambda

CSMM v1 WKL-04.3

References

Severity

Item Types

AWS::Lambda::Function

Overview​

Vendor​

Cloud Service​

Related Controls​

References​

Severity​

Item Types​