Public read access is enabled for storage containers and blobs Affecting Storage service in Azure

Snyk CCSS

IAM / Public Access

Is your enviroment affected by this misconfiguration?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Frameworks

CIS-Azure CIS-Controls

Snyk ID SNYK-CC-00602
credit Snyk Research Team

Report a new misconfiguration Found a mistake?

Description

Client has unauthorized read access to storage containers and blobs.

How to fix?

Set properties.PublicAccess to None.

Terraform

azurerm_storage_account

References

Allow or disallow public read access for a storage account