EC2 Instance IAM Profile has Administrative Privileges

Tenacity Id

Risk Level

Categories

ec2-010

5

Last Updated:

April 21, 2022

An Amazon Elastic Compute Cloud (EC2) instance has an Identity and Access Management (IAM) role that grants administrative privileges. A compromised EC2 instance configured with this role would allow an attacker to have administrative access. EC2 instances should be configured with restricted IAM roles using least privilege best practices.