7 matches found
EUVD-2026-19761
Privilege escalation in Apache Cassandra 5.0 on an mTLS environment using MutualTlsAuthenticator allows a user with only CREATE permission to associate their own certificate identity with an arbitrary role, including a superuser role, and authenticate as that role via ADD IDENTITY. Users are...
CVE-2026-27314 Apache Cassandra: Privilege escalation via ADD IDENTITY authorization bypass
Privilege escalation in Apache Cassandra 5.0 on an mTLS environment using MutualTlsAuthenticator allows a user with only CREATE permission to associate their own certificate identity with an arbitrary role, including a superuser role, and authenticate as that role via ADD IDENTITY. Users are...
PT-2026-30903
Privilege escalation in Apache Cassandra 5.0 on an mTLS environment using MutualTlsAuthenticator allows a user with only CREATE permission to associate their own certificate identity with an arbitrary role, including a superuser role, and authenticate as that role via ADD IDENTITY. Users are...
CVE-2021-47621 vulnerabilities
Vulnerabilities for packages: management-api-for-apache-cassandra-5.0...
GHSA-C4R9-R8FH-9VJ2 vulnerabilities
Vulnerabilities for packages: management-api-for-apache-cassandra-5.0...
CVE-2022-38751 vulnerabilities
Vulnerabilities for packages: management-api-for-apache-cassandra-5.0...
CVE-2022-38749 vulnerabilities
Vulnerabilities for packages: management-api-for-apache-cassandra-5.0...