Prevasio | GCP Dashboard

Account Summary
Multi-account Summary

Scan Summary

Assets scanned

141

Issues found

Malicious containers

Last scan

(an hour ago)

Current status

Last scan: Ok

AlgoSec Best Practices

Compliance status: No issues

CIS GCP v1.5.0

Compliance status: 97 issues

PCI DSS v4.0

Compliance status: 81 issues

HIPAA

Compliance status: 74 issues

Container Images

Among 4 analyzed container images, the following were found to be vulnerable:

CVE-2019-14697	musl libc through 1.1.23 has an x87 floating-point stack adjustment im ...
CVE-2021-36159	libfetch before 2021-07-26, as used in apk-tools, xbps, and other products, mishandles numeric strings for the FTP and HTTP protocols

CVE-2021-28831	busybox: invalid free or segmentation fault via malformed gzip data
CVE-2020-1967	openssl: Segmentation fault in SSL_check_chain causes denial of service
CVE-2021-23840	openssl: integer overflow in CipherUpdate
CVE-2021-3450	openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT
CVE-2021-30139	In Alpine Linux apk-tools before 2.12.5, the tarball parser allows a buffer overflow and crash.

CVE-2019-1547	openssl: side-channel weak encryption vulnerability
CVE-2019-1549	openssl: information disclosure in fork()
CVE-2019-1551	openssl: Integer overflow in RSAZ modular exponentiation on x86_64
CVE-2020-1971	openssl: EDIPARTYNAME NULL pointer de-reference
CVE-2021-23841	openssl: NULL pointer dereference in X509_issuer_and_serial_hash()

Latest malicious container images:

Repository	Image tag	Malware
xmrig	xmrig2	Multios.Coinminer.Miner-6781728-2

Top malware detections:

Malware	Malicious files
Multios.Coinminer.Miner-6781728-2	1

There are no ports found to be exposed by containers.

There are no networking services found.

Security Issues

6

47

179

54

0

Artifact Registry

Private repositories (2)

Network Services

Load Balancers (2)	High: 1
Backend Services (1)	Medium: 1
DNS Policies (1)	No issues
DNS Zones (1)	Medium: 1

Compute Engine

VM Instances (7)	High: 20
Disks (9)	Medium: 24
Snapshots (3)	Low: 2
Images (1)	No issues
Instance Groups (2)	Low: 1

VPC Network

VPC Networks (2)	Medium: 2
Subnets (30)	Medium: 58
Firewalls (13)	Critical: 2

Logging

Logs Router Sinks (8)	Low: 1
Logs-based Metrics (8)	No issues

Pub/Sub

Subscriptions (2)	Low: 1
Topics (3)	High: 3

Dataflow

BigQuery

Deployments

Deployments (1)

SQL

Instances (4)	Critical: 2
Users (1)	No issues
Backup Runs (4)	No issues

Spanner

Cloud Storage

Cloud Functions

Kubernetes Engine

IAM & Admin

Service Accounts (4)	Medium: 2
Service Account Keys (6)	Medium: 1
Resource Policies (2)	Medium: 1
Projects (1)	High: 1
Organization (1)	Medium: 20

Key Management

Key rings (3)	No issues
Key inventory (4)	Critical: 1

Scan Summary

Account name	Assets scanned	Issues found	Malicious containers	Last scan	Current Status
another-account-admin	51	77	—		Last scan: Ok
another-account-data-science	50	75	—		Last scan: Ok
Total	101	152	—

Security Issues

Critical

0

High

4

Medium

122

Low

25

Informational

0

Suppressed

1

Account name	Critical	High	Medium	Low	Informational	Suppressed	Legend
another-account-admin	—	2	59	15	—	1
another-account-data-science	—	2	63	10	—	—
Total	—	4	122	25	—	1