Gcp Uniform Bucket Access Disabled
Description
Detects GCP Cloud Storage buckets that have uniform bucket-level access disabled. Uniform bucket-level access enforces consistent permissions at the bucket level rather than allowing mixed bucket and object-level permissions, which can lead to security gaps and access control complexity. Disabling this feature increases security risks by allowing potentially inconsistent and granular access controls.
Detection Strategy
• Scans all Cloud Storage buckets in the GCP project
• Reports a vulnerability when a bucket's 'uniformBucketLevelAccess' setting is disabled (set to false)
• For each vulnerable bucket, captures the bucket path and IAM configuration details in the vulnerability report
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.