Lambda Function has Administrative Privileges

Tenacity Id

Risk Level

Categories

lambda-003

3

Last Updated:

April 21, 2022

An AWS Lambda function execution Identity Access and Management (IAM) role grants administrative priviledges to other AWS services and resources. Use least privilege to grant a Lambda function execution permissions to limit exposure if a Lambda function is compromised. Restrict the Lambda function IAM role to only the required permissions for specific AWS services.