Risk Details
AI Model Storage Bucket is Publicly Accessible
An S3 bucket containing trained AI models and sensitive training data is configured for public read access.
High Severity
Open
AWS
Affected Resources
- s3://cloudarmor-ai-models-prod
Disable Public Access to S3 Bucket
- Navigate to the S3 console and select the specified bucket.
- Go to the 'Permissions' tab.
- Enable 'Block all public access'.
- If public access is required for a specific use case, use pre-signed URLs or a CloudFront distribution with Origin Access Identity.