TF 0253 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
When using Queue Services for a storage account, logging should be enabled.
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | storage |
| Provider | Azure |
| Vulnerability Type | omission |
Description
Queue services in the Azure storage account are configured without logging enabled, preventing the collection of detailed information about successful and failed requests. This omission limits visibility into service operations and access patterns.
Impact
Without logging, it is difficult to detect unauthorized access, investigate incidents, or troubleshoot issues related to the storage queue. This lack of audit data can hinder security monitoring and compromise the ability to respond to or recover from potential attacks or misconfigurations.
Resolution
Enable logging for Queue Services