Azure Blob Storage Detected

info Web App Scanning Plugin ID 113159

Synopsis

Azure Blob Storage Detected

Description

Azure Blob Storage is a public cloud storage service available in Microsoft Azure which provides a programmatic way to store and retrieve data objects in storage accounts. Web applications often rely on blob storage to serve static assets (images or scripts for example) or to store application related data like user uploads, application exports or log files. Blob storage can also be used to host static web applications without any additional service.

Depending on the expected usage of the blob storage, developers can define permissions on the storage container and its objects to allow public operations on it (for example to list the content or retrieve an object) or to keep it private.

Solution

Ensure that the detected Azure blob storage is already identified in the assets used by the web applications, and that the permissions are defined according to its expected purpose and to the Azure security best practices.

See Also

https://azure.microsoft.com/en-us/services/storage/blobs/

https://docs.microsoft.com/en-us/azure/storage/blobs/security-recommendations

https://docs.microsoft.com/en-us/azure/storage/blobs/storage-blobs-introduction

Plugin Details

Severity: Info

ID: 113159

Type: remote

Published: 2/7/2022

Updated: 2/7/2022

Scan Template: api, basic, full, pci, scan