💼 [CloudFront.12] CloudFront distributions should not point to non-existent S3 origins

ID: /frameworks/aws-fsbp-v1.0.0/cloudfront/12

Description

When a CloudFront distribution in your account is configured to point to a non-existent bucket, a malicious third party can create the referenced bucket and serve their own content through your distribution. We recommend checking all origins regardless of routing behavior to ensure that your distributions are pointing to appropriate origins.

Similar

AWS Security Hub
- https://docs.aws.amazon.com/securityhub/latest/userguide/cloudfront-controls.html#cloudfront-12
Internal
- ID: dec-c-6393fb33

Similar Sections (Give Policies To)

Section	Sub Sections	Policies	Compliance
💼 NIST SP 800-53 Revision 5 → 💼 CM-2 Baseline Configuration	7	29	no data
💼 NIST SP 800-53 Revision 5 → 💼 CM-2(2) Baseline Configuration _ Automation Support for Accuracy and Currency		16	no data
💼 PCI DSS v4.0.1 → 💼 2.2.6 System security parameters are configured to prevent misuse.		16	no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Description​

Similar​

Similar Sections (Give Policies To)​

Sub Sections​

Description

Similar

Similar Sections (Give Policies To)

Sub Sections