AWS inspector documentation change
Summary
Updated managed policies with new permissions for viewing organizational policies and delegation configurations
Security assessment
Documents expanded IAM permissions related to organizational policies, which is part of standard security feature documentation. No evidence this addresses a specific vulnerability or security incident.
Diff
diff --git a/inspector/latest/user/doc-history.md b/inspector/latest/user/doc-history.md index 6d80789c4..b0959a068 100644 --- a//inspector/latest/user/doc-history.md +++ b//inspector/latest/user/doc-history.md @@ -10,0 +11,2 @@ Change| Description| Date +Updates for Amazon Inspector SBOM Generator| Amazon Inspector is made aware of a scenario where the Amazon Inspector SBOM Generator might generate vulnerability findings for `CVE-2025-47913`. It was confirmed the Amazon Inspector SBOM Generator is not impacted by this CVE, and an update was deployed to resolve this detection. | November 14, 2025 +Updated policies| Amazon Inspector adds new permissions to the managed policies [`AmazonInspector2FullAccess_v2`](https://docs.aws.amazon.com/inspector/latest/user/security-iam-awsmanpol.html#security-iam-awsmanpol-AmazonInspector2FullAccessV2) and [`AmazonInspector2ReadOnlyAccess`](https://docs.aws.amazon.com/inspector/latest/user/security-iam-awsmanpol.html#security-iam-awsmanpol-AmazonInspector2ReadOnlyAccess). The permissions allow viewing of Inspector organizational policies and delegation configurations established through AWS Organizations policies. For more information, see [AWS managed policies for Amazon Inspector](https://docs.aws.amazon.com/inspector/latest/user/security-iam-awsmanpol.html). | November 14, 2025