More Info:

AWS S3 buckets should not allow WRITE_ACP access to AWS authenticated users using ACLs. Granting authenticated “WRITE_ACP” access to your AWS S3 buckets can allow other AWS accounts or IAM users to edit ACL permissions in order to view, upload, modify and delete S3 objects within the buckets without restrictions.

Risk Level

High

Address

Security

Compliance Standards

CBP, PCIDSS, NIST

Triage and Remediation

Remediation

Using Console

Additional Reading: