diff --git a/prowler/providers/aws/services/iam/iam_no_custom_policy_permissive_role_assumption/iam_no_custom_policy_permissive_role_assumption.py b/prowler/providers/aws/services/iam/iam_no_custom_policy_permissive_role_assumption/iam_no_custom_policy_permissive_role_assumption.py
index 26185e7ed5..8439a53ee4 100644
--- a/prowler/providers/aws/services/iam/iam_no_custom_policy_permissive_role_assumption/iam_no_custom_policy_permissive_role_assumption.py
+++ b/prowler/providers/aws/services/iam/iam_no_custom_policy_permissive_role_assumption/iam_no_custom_policy_permissive_role_assumption.py
@@ -20,15 +20,26 @@ def execute(self) -> Check_Report_AWS:
                 if (
                     statement["Effect"] == "Allow"
                     and "Action" in statement
-                    and (
-                        "sts:AssumeRole" in statement["Action"]
-                        or "sts:*" in statement["Action"]
-                        or "*" in statement["Action"]
-                    )
                     and "*" in statement["Resource"]
                 ):
-                    report.status = "FAIL"
-                    report.status_extended = f"Custom Policy {policy['PolicyName']} allows permissive STS Role assumption"
+                    if type(statement["Action"]) == list:
+                        for action in statement["Action"]:
+                            if (
+                                action == "sts:AssumeRole"
+                                or action == "sts:*"
+                                or action == "*"
+                            ):
+                                report.status = "FAIL"
+                                report.status_extended = f"Custom Policy {policy['PolicyName']} allows permissive STS Role assumption"
+                                break
+                    else:
+                        if (
+                            statement["Action"] == "sts:AssumeRole"
+                            or statement["Action"] == "sts:*"
+                            or statement["Action"] == "*"
+                        ):
+                            report.status = "FAIL"
+                            report.status_extended = f"Custom Policy {policy['PolicyName']} allows permissive STS Role assumption"
                     break
 
             findings.append(report)
diff --git a/tests/providers/aws/services/iam/iam_no_custom_policy_permissive_role_assumption/iam_no_custom_policy_permissive_role_assumption_test.py b/tests/providers/aws/services/iam/iam_no_custom_policy_permissive_role_assumption/iam_no_custom_policy_permissive_role_assumption_test.py
index bfb4d9bb33..a346677cfe 100644
--- a/tests/providers/aws/services/iam/iam_no_custom_policy_permissive_role_assumption/iam_no_custom_policy_permissive_role_assumption_test.py
+++ b/tests/providers/aws/services/iam/iam_no_custom_policy_permissive_role_assumption/iam_no_custom_policy_permissive_role_assumption_test.py
@@ -165,7 +165,7 @@ def test_policy_permissive_and_not_permissive(self):
         policy_document_non_permissive = {
             "Version": "2012-10-17",
             "Statement": [
-                {"Effect": "Allow", "Action": "logs:CreateLogGroup", "Resource": "*"},
+                {"Effect": "Allow", "Action": "logs:*", "Resource": "*"},
             ],
         }
         policy_name_permissive = "policy2"