S3 Bucket Policy Has Excessive Permissions

Overview

This checks S3 bucket policies for Statements that Allow Principals that include wildcard '*' groups.

Policies that allow wildcard groups will permit any user and/or AWS account to access or modify this bucket unless otherwise more explicitly denied permission by the policy.

Vendor

AWS

Cloud Service

CSMM v1 DAT-02.1, S3.6

Severity

Item Types

AWS::S3::Bucket

Overview​

Vendor​

Cloud Service​

Related Controls​

Severity​

Item Types​

Overview

Vendor

Cloud Service

Related Controls

Severity

Item Types