recs-engine-load-balancer-86

load-balancer · AWS · us-west-2 · staging

Posture

critical

2

high

0

medium

10

low

3

Ownership

Applicationrecs-engine

TeamPlatform

OwnerPriya Patel

LanguageJava

Criticality

tier-3

Findings (15)

Terraform module pins old AMI with CVEs

Insecure deserialization in message queue consumer

Contrast RASPRASP

IAM role with wildcard permissions

TruffleHogSecrets

Outdated lodash with prototype pollution

Missing rate limiting on /login

Cloudflare WAFWAF

Terraform module pins old AMI with CVEs

Contrast RASPRASP

Path traversal in file download endpoint

S3 bucket publicly readable

Open Redis without auth

Cross-site Scripting in profile renderer

GitleaksSecrets

JWT signed with weak HS256 secret

GitleaksSecrets