16 matches found
CVE-2021-44521 vulnerabilities
Vulnerabilities for packages: druid...
CVE-2021-44521 vulnerabilities
Vulnerabilities for packages: druid...
Security Bulletin: IBM Global Mailbox is vulnerable to remote code execution due to Apache Cassandra (CVE-2021-44521)
Summary IBM Global Mailbox has addressed a remote code execution in Apache Cassandra. Vulnerability Details CVEID:CVE-2021-44521 DESCRIPTION: Apache Cassandra could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a flaw when include configurations for...
Exploit for Code Injection in Apache Cassandra
0day 由于众所周知的原因,原始仓库被删除,但保留了副本,forks和stars 清零 不过请放心,还是原来的配方,原来的味道。 为了避免再次出现这种情况找不到此项目,可以Follow 一下 本仓库所有内容仅限用于学习交流 English | 中文 各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新 优秀项目列表 1. Fastjson RCE https://github.com/dbgee/fastjson-rce 2. Log4j RCE https://github.com/dbgee/log4j2rce 3. redis RCE...
SUSE CVE-2021-44521
When running Apache Cassandra with the following configuration: enableuserdefinedfunctions: true enablescripteduserdefinedfunctions: true enableuserdefinedfunctionsthreads: false it is possible for an attacker to execute arbitrary code on the host. The attacker would need to have enough permissio...
Apache Cassandra Remote Code Execution (CVE-2021-44521)
A remote code execution vulnerability exists in Apache Cassandra. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Are MobileIron Products Vulnerable to CVE-2021-44521--apache-cassandra
Last Modified Date Mar 8, 2024 7:55:33 PM...
Exploit for Incorrect Permission Assignment for Critical Resource in Apache Cassandra
CVE-2021-44521 Automated PoC of CVE-2021-44521 Credits to orig...
Security Bulletin: Datastax Enterprise with IBM is vulnerable to exploiting Apache Cassandra User-Defined Functions for Remote Code Execution
Summary In Datastax Enterprise with IBM, a remote code execution RCE security vulnerability in Apache Cassandra exists and has been assigned to CVE-2021-44521. Vulnerability Details CVEID: CVE-2021-44521 DESCRIPTION: Apache Cassandra could allow a remote authenticated attacker to execute arbitrar...
High-Severity RCE Bug Found in Popular Apache Cassandra Database
Researchers have shared details about a now-patched, high-severity security bug in the Apache Cassandra open-source NoSQL distributed database that’s easy to exploit and, if left unpatched, could enable attackers to gain remote code execution RCE. The bug, which involves how Cassandra creates...
com.ericsson.bss.cassandra.ecaudit:ecaudit_c3.11 (>=2.7.0 <=2.8.0), com.ibm.fhir:fhir-term-graph (>=4.9.2 <=4.10.2) +64 more potentially affected by CVE-2021-44521 via org.apache.cassandra:cassandra-all (>=3.11.0 <=3.11.11)
org.apache.cassandra:cassandra-all MAVEN version =3.11.0, =2.7.0, =4.9.2, =4.10.0, =3.11, =3.11, =3.11, =0.3.3, =0.4.0, =0.10.0, =3.11.0.0, =2.3, =5.3.0, =6.1.0 and more Source cves: CVE-2021-44521 Source advisory: OSV:GHSA-8FFC-79XG-29W8...
com.ericsson.bss.cassandra.ecaudit:ecaudit_c4.0 (=3.1.3), com.instaclustr:cassandra-lucene-index-plugin (=4.0.0-1.0.0) +18 more potentially affected by CVE-2021-44521 via org.apache.cassandra:cassandra-all (>=4.0.0 <=4.0.19)
org.apache.cassandra:cassandra-all MAVEN version =4.0.0, =4.4.0.0, =4.4.0.0, =1.0.31, =1.0.31, =1.0.86, =4.0.18.0, =4.0.18.0, =1.2.0, =1.5.0, =1.7.0 and more Source cves: CVE-2021-44521 Source advisory: OSV:GHSA-8FFC-79XG-29W8...
CVE-2021-44521
creationtimestamp| type| source ---|---|--- 2022-02-11 16:29:38+00:00| seen| https://t.me/cibsecurity/37297 2022-02-16 06:26:39+00:00| seen| https://t.me/thehackernews/1889 2022-02-16 16:20:00+00:00| seen| https://t.me/truesecator/2636 2022-03-16 14:30:16+00:00| seen| https://t.me/truesecator/273...
CVE-2021-44521
When running Apache Cassandra with the following configuration: enableuserdefinedfunctions: true enablescripteduserdefinedfunctions: true enableuserdefinedfunctionsthreads: false it is possible for an attacker to execute arbitrary code on the host. The attacker would need to have enough permissio...
CVE-2021-44521
When running Apache Cassandra with the following configuration: enableuserdefinedfunctions: true enablescripteduserdefinedfunctions: true enableuserdefinedfunctionsthreads: false it is possible for an attacker to execute arbitrary code on the host. The attacker would need to have enough permissio...
CVE-2021-44521
CVE-2021-44521 affects Apache Cassandra when enable_user_defined_functions: true, enable_scripted_user_defined_functions: true, and enable_user_defined_functions_threads: false. The documented unsafe configuration can allow an attacker with cluster-level permissions to create user-defined functio...