Publicly accessible Lambda function has a critical vulnerability

ec2
이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

The policy evaluates AWS Lambda functions to determine if they are publicly accessible and have one or more critical-severity vulnerabilities. Publicly accessible functions with critical vulnerabilities are at a higher risk of malicious attacks, which can compromise data integrity and system security.

Remediation

  1. Identify Lambda functions that are publicly accessible and review the associated critical vulnerabilities.
  2. Prioritize and apply security patches or updates to address the identified vulnerabilities. If patches are not available, consider implementing alternative security measures.
  3. Evaluate the need for public accessibility of the Lambda function. If unnecessary, modify the function’s access settings to restrict public access.
PREVIEWING: aliciascott/DOCS-9725-Cloudcraft