github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/iam/AVD-AWS-0342/docs.md

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/iam/AVD-AWS-0342/docs.md (about)

     1  
     2  In iam:PassRole the service carrying out the actions is "provided" a role by the calling principal and implicitly takes on that role to carry out the actions (instead of executing sts:AssumeRole).
     3         The privileges attached to the role are distinct from those of the primary ordering the action and may even be larger and can cause security issues.
     4             
     5  
     6  ### Impact
     7  Compromise on security of aws resources.
     8  
     9  <!-- DO NOT CHANGE -->
    10  {{ remediationActions }}
    11  
    12  ### Links
    13  - https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_passrole.html
    14  
    15