This analytic identifies high-severity vulnerabilities found during AWS Elastic Container Registry (ECR) image scans, detected through the analysis of AWS CloudTrail logs specifically for the DescribeImageScanFindings event. The rule prioritizes findings labeled with a high severity level, indicating critical vulnerabilities that, if present in container images, could be exploited by malicious actors to gain unauthorized access, execute arbitrary code, or escalate privileges, thereby posing a significant threat to network security. The rule highlights the need for prompt responses to high-severity findings to mitigate potential exploitation risks.