Azure-QueueService-Queue-Service-All-Access-ACL

Owned by naveen
Dec 08, 2021
1 min read

Severity : Critical

Description : Queues can be configured to allow object read, write or delete. This option should not be configured unless there is a strong business requirement.

Remediation Steps : Disable global read, write, delete policies on all queues and ensure the ACL is configured with least privileges.

Blue Hexagon Proprietary