VIR Vulnerability Intelligence Relay

Package impact

java Maven / org.apache.cassandra:cassandra-all

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-32588 unknown 2mo ago Apache Cassandra has an authenticated DoS over CQL
CVE-2026-27315 unknown 2mo ago Apache Cassandra has sensitive Information Leak in cqlsh
CVE-2026-27314 unknown 2mo ago Apache Cassandra is vulnerable to privilege escalation in an mTLS environment using MutualTlsAuthenticator
CVE-2025-26467 unknown 9mo ago Apache Cassandra: User with MODIFY permission on ALL KEYSPACES can escalate privileges to superuser via unsafe actions (4.0.16 only)
CVE-2025-23015 unknown 1y ago Apache Cassandra: User with MODIFY permission on ALL KEYSPACES can escalate privileges to superuser via unsafe actions
CVE-2024-27137 unknown 1y ago Apache Cassandra: unrestricted deserialization of JMX authentication credentials
CVE-2025-24860 unknown 1y ago Apache Cassandra: CassandraNetworkAuthorizer and CassandraCIDRAuthorizer can be bypassed allowing access to different network regions
CVE-2023-30601 unknown 3y ago Apache Cassandra: Privilege escalation when enabling FQL/Audit logs
CVE-2018-8016 unknown 4y ago Missing Authentication for Critical Function in Apache Cassandra
CVE-2021-44521 unknown 4y ago Apache Cassandra vulnerable to Code Injection due to unsafe configuration
CVE-2020-17516 unknown 4y ago Authentication Bypass in Apache Cassandra