Data protection

Storage bucket policy grant authenticated users object creator access

Platform(s)
Compliance Frameworks

Description

Google Cloud Storage service allows you to store and retrieve data in a bucket. It was found that the {GcpStorageBucket} bucket is allowing Storage Bucket Object Creator permissions to all authenticated users. This could result with any authenticated user with a Google account executing object creation operations on the bucket.
Need help?

Get a free Security Risk Assessment. Start today

Orca Security Demo Demo the Orca Platform-> In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.