gcp-sql-public-database
gcp-sql-public-database
Likelihood: MEDIUM
Confidence: MEDIUM
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-gke-client-certificate-disabled
gcp-gke-client-certificate-disabled
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-folder-member-default-service-account-iam-member
gcp-folder-member-default-service-account-iam-member
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-gke-enabled-vpc-flow-logs
gcp-gke-enabled-vpc-flow-logs
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-compute-serial-ports
gcp-compute-serial-ports
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-org-member-default-service-account-iam-binding
gcp-org-member-default-service-account-iam-binding
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-sub-network-private-google-enabled
gcp-sub-network-private-google-enabled
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-project-member-default-service-account-iam-binding
gcp-project-member-default-service-account-iam-binding
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-vertexai-private-instance
gcp-vertexai-private-instance
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-insecure-load-balancer-tls-version
gcp-insecure-load-balancer-tls-version
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-326: Inadequate Encryption Strength
OWASP:
- A03:2017 - Sensitive Data Exposure
- A02:2021 - Cryptographic Failures
gcp-gke-pod-security-policy-enabled
gcp-gke-pod-security-policy-enabled
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-bigtable-instance-encrypted-with-cmk
gcp-bigtable-instance-encrypted-with-cmk
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-320: CWE CATEGORY: Key Management Errors
OWASP:
- A03:2017 - Sensitive Data Exposure
gcp-bigquery-dataset-encrypted-with-cmk
gcp-bigquery-dataset-encrypted-with-cmk
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-320: CWE CATEGORY: Key Management Errors
OWASP:
- A03:2017 - Sensitive Data Exposure
gcp-dataproc-cluster-public-ip
gcp-dataproc-cluster-public-ip
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-memory-store-for-redis-intransit-encryption
gcp-memory-store-for-redis-intransit-encryption
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-folder-member-default-service-account-iam-binding
gcp-folder-member-default-service-account-iam-binding
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-dataflow-job-encrypted-with-cmk
gcp-dataflow-job-encrypted-with-cmk
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-320: CWE CATEGORY: Key Management Errors
OWASP:
- A03:2017 - Sensitive Data Exposure
gcp-gke-cluster-logging
gcp-gke-cluster-logging
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-320: CWE CATEGORY: Key Management Errors
OWASP:
- A03:2017 - Sensitive Data Exposure
gcp-gke-legacy-instance-metadata-disabled
gcp-gke-legacy-instance-metadata-disabled
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-bigquery-table-encrypted-with-cmk
gcp-bigquery-table-encrypted-with-cmk
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-320: CWE CATEGORY: Key Management Errors
OWASP:
- A03:2017 - Sensitive Data Exposure
gcp-bigquery-private-table-iam-member
gcp-bigquery-private-table-iam-member
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-gke-public-control-plane
gcp-gke-public-control-plane
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-gke-nodepool-integrity-monitoring
gcp-gke-nodepool-integrity-monitoring
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-storage-bucket-uniform-access
gcp-storage-bucket-uniform-access
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-pubsub-private-topic-iam-member
gcp-pubsub-private-topic-iam-member
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-compute-boot-disk-encryption
gcp-compute-boot-disk-encryption
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-311: Missing Encryption of Sensitive Data
OWASP:
- A03:2017 - Sensitive Data Exposure
- A04:2021 - Insecure Design
gcp-kms-prevent-destroy
gcp-kms-prevent-destroy
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-gke-legacy-auth-enabled
gcp-gke-legacy-auth-enabled
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-compute-os-login
gcp-compute-os-login
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-compute-ip-forward
gcp-compute-ip-forward
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-dataproc-cluster-encrypted-with-cmk
gcp-dataproc-cluster-encrypted-with-cmk
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-320: CWE CATEGORY: Key Management Errors
OWASP:
- A03:2017 - Sensitive Data Exposure
gcp-vertexai-dataset-encrypted-with-cmk
gcp-vertexai-dataset-encrypted-with-cmk
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-320: CWE CATEGORY: Key Management Errors
OWASP:
- A03:2017 - Sensitive Data Exposure
gcp-compute-template-ip-forward
gcp-compute-template-ip-forward
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-gke-monitoring-enabled
gcp-gke-monitoring-enabled
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-compute-project-os-login
gcp-compute-project-os-login
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-datafusion-private-instance
gcp-datafusion-private-instance
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-compute-template-public-ip
gcp-compute-template-public-ip
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-artifact-registry-encrypted-with-cmk
gcp-artifact-registry-encrypted-with-cmk
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-320: CWE CATEGORY: Key Management Errors
OWASP:
- A03:2017 - Sensitive Data Exposure
gcp-datafusion-stack-driver-monitoring
gcp-datafusion-stack-driver-monitoring
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-326: Inadequate Encryption Strength
OWASP:
- A03:2017 - Sensitive Data Exposure
- A02:2021 - Cryptographic Failures
gcp-compute-firewall-unrestricted-ingress-22
gcp-compute-firewall-unrestricted-ingress-22
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-gke-network-policy-enabled
gcp-gke-network-policy-enabled
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-memory-store-for-redis-auth-enabled
gcp-memory-store-for-redis-auth-enabled
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-gke-basic-auth
gcp-gke-basic-auth
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-project-service-account-user-iam-binding
gcp-project-service-account-user-iam-binding
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-compute-firewall-unrestricted-ingress-3306
gcp-compute-firewall-unrestricted-ingress-3306
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-pubsub-encrypted-with-cmk
gcp-pubsub-encrypted-with-cmk
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-320: CWE CATEGORY: Key Management Errors
OWASP:
- A03:2017 - Sensitive Data Exposure
gcp-org-member-default-service-account-iam-member
gcp-org-member-default-service-account-iam-member
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-folder-impersonation-roles-iam-member
gcp-folder-impersonation-roles-iam-member
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-compute-firewall-unrestricted-ingress-21
gcp-compute-firewall-unrestricted-ingress-21
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-gke-kubernetes-rbac-google-groups
gcp-gke-kubernetes-rbac-google-groups
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-dns-key-specs-rsasha1
gcp-dns-key-specs-rsasha1
Likelihood: LOW
Confidence: MEDIUM
CWE:
- CWE-326: Inadequate Encryption Strength
OWASP:
- A03:2017 - Sensitive Data Exposure
- A02:2021 - Cryptographic Failures
gcp-compute-disk-encryption
gcp-compute-disk-encryption
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-311: Missing Encryption of Sensitive Data
OWASP:
- A03:2017 - Sensitive Data Exposure
- A04:2021 - Insecure Design
gcp-sql-database-require-ssl
gcp-sql-database-require-ssl
Likelihood: LOW
Confidence: MEDIUM
CWE:
- CWE-326: Inadequate Encryption Strength
OWASP:
- A03:2017 - Sensitive Data Exposure
- A02:2021 - Cryptographic Failures
gcp-build-workers-private
gcp-build-workers-private
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-gke-private-cluster-config
gcp-gke-private-cluster-config
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-compute-public-ip
gcp-compute-public-ip
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-spanner-database-encrypted-with-cmk
gcp-spanner-database-encrypted-with-cmk
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-320: CWE CATEGORY: Key Management Errors
OWASP:
- A03:2017 - Sensitive Data Exposure
gcp-compute-firewall-unrestricted-ingress-3389
gcp-compute-firewall-unrestricted-ingress-3389
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-compute-firewall-unrestricted-ingress-20
gcp-compute-firewall-unrestricted-ingress-20
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-compute-ssl-policy
gcp-compute-ssl-policy
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-326: Inadequate Encryption Strength
OWASP:
- A03:2017 - Sensitive Data Exposure
- A02:2021 - Cryptographic Failures
gcp-dataflow-private-job
gcp-dataflow-private-job
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-artifact-registry-private-repo-iam-binding
gcp-artifact-registry-private-repo-iam-binding
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-compute-firewall-unrestricted-ingress-80
gcp-compute-firewall-unrestricted-ingress-80
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-project-member-default-service-account-iam-member
gcp-project-member-default-service-account-iam-member
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-artifact-registry-private-repo-iam-member
gcp-artifact-registry-private-repo-iam-member
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-vertexai-metadata-store-encrypted-with-cmk
gcp-vertexai-metadata-store-encrypted-with-cmk
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-320: CWE CATEGORY: Key Management Errors
OWASP:
- A03:2017 - Sensitive Data Exposure
gcp-gke-secure-boot-for-shielded-nodes
gcp-gke-secure-boot-for-shielded-nodes
gcp-cloud-storage-logging
gcp-cloud-storage-logging
Likelihood: LOW
Confidence: MEDIUM
CWE:
- CWE-778: Insufficient Logging
OWASP:
- A10:2017 - Insufficient Logging & Monitoring
- A09:2021 - Security Logging and Monitoring Failures
gcp-storage-bucket-not-public-iam-binding
gcp-storage-bucket-not-public-iam-binding
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-dataproc-private-cluster-iam-binding
gcp-dataproc-private-cluster-iam-binding
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-project-service-account-user-iam-member
gcp-project-service-account-user-iam-member
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-project-default-network
gcp-project-default-network
false
.Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-gke-master-authz-networks-enabled
gcp-gke-master-authz-networks-enabled
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-dataproc-private-cluster-iam-member
gcp-dataproc-private-cluster-iam-member
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-datafusion-stack-driver-logging
gcp-datafusion-stack-driver-logging
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-org-impersonation-roles-iam-binding
gcp-org-impersonation-roles-iam-binding
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-run-private-service-iam-binding
gcp-run-private-service-iam-binding
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-sub-network-logging-enabled
gcp-sub-network-logging-enabled
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-bigquery-private-table-iam-binding
gcp-bigquery-private-table-iam-binding
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-folder-impersonation-roles-iam-binding
gcp-folder-impersonation-roles-iam-binding
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-pubsub-private-topic-iam-binding
gcp-pubsub-private-topic-iam-binding
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-storage-bucket-not-public-iam-member
gcp-storage-bucket-not-public-iam-member
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-gke-ensure-integrity-monitoring
gcp-gke-ensure-integrity-monitoring
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-sqlserver-no-public-ip
gcp-sqlserver-no-public-ip
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-run-private-service-iam-member
gcp-run-private-service-iam-member
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control
gcp-org-impersonation-roles-iam-member
gcp-org-impersonation-roles-iam-member
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control