Redis Not Compliant

  • Query id: 9f34885e-c08f-4d13-a7d1-cf190c5bd268
  • Query name: Redis Not Compliant
  • Platform: Ansible
  • Severity: High
  • Category: Encryption
  • CWE: 665
  • URL: Github

Description

Check if the redis version is compliant with the necessary AWS PCI DSS requirements
Documentation

Code samples

Code samples with security vulnerabilities

Positive test num. 1 - yaml file
- name: Basic example
  community.aws.elasticache:
    name: "test-please-delete"
    state: present
    engine: memcached
    cache_engine_version: 1.4.14
    node_type: cache.m1.small
    num_nodes: 1

Code samples without security vulnerabilities

Negative test num. 1 - yaml file
- name: Basic example
  community.aws.elasticache:
    name: test-please-delete
    state: present
    engine: memcached
    cache_engine_version: 5.1.10
    node_type: cache.m1.small
    num_nodes: 1