Vendor services misconfigurations

Cloud function with policy members ‘all authenticated users’

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

GCP cloud function {GcpCloudFunction} was detected running with policy bindings with 'allAuthenticatedUsers' in Members, allowing access to all authenticated users with a Google account.

  • Recommended Mitigation

    Restrict the authenticated access to the GCP cloud function to authorized users only.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.