Plugin Title Bucket Public Access Type
Cloud ORACLE
Category Object Store
Description Ensures Object Store buckets do not allow global write, delete, or read permissions
More Info Object Store buckets can be configured to allow anyone, regardless of whether they are an Oracle Cloud user or not, to write objects to a bucket or delete objects. This option should not be configured unless there is a strong business requirement.
AWS Link https://docs.cloud.oracle.com/iaas/Content/Object/Tasks/managingbuckets.htm
Recommended Action Disable global all users policies on all Object Store buckets and ensure the bucket is configured with the least privileges.


Detailed Remediation Steps

Want to scan for this risk automatically?

Get Started Now