Lucene search
K

4 matches found

Prion
Prion
added 2018/06/28 4:29 p.m.25 views

Default configuration

The default configuration in Apache Cassandra 3.8 through 3.11.1 binds an unauthenticated JMX/RMI interface to all network interfaces, which allows remote attackers to execute arbitrary Java code via an RMI request. This issue is a regression of CVE-2015-0225. The regression was introduced in...

7.5CVSS9.6AI score0.06692EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/06/28 4:0 p.m.29 views

CVE-2018-8016

The default configuration in Apache Cassandra 3.8 through 3.11.1 binds an unauthenticated JMX/RMI interface to all network interfaces, which allows remote attackers to execute arbitrary Java code via an RMI request. This issue is a regression of CVE-2015-0225. The regression was introduced in...

9.7AI score0.02289EPSS
Exploits0References1
Veracode
Veracode
added 2018/06/26 7:42 a.m.32 views

Remote Code Execution (RCE)

apache-cassandra is vulnerable to remote code execution RCE attacks. The library binds unauthenticated Remote Method Invocation RMI Interfaces to all network interfaces, allowing a malicious user to invoke an RMI request to inject and execute arbitrary Java code. This is a regression of...

9.8CVSS10AI score0.06692EPSS
Exploits0References5Affected Software2
CVE
CVE
added 2015/04/03 2:0 p.m.103 views

CVE-2015-0225

CVE-2015-0225 affects Apache Cassandra 1.2.0–1.2.19, 2.0.0–2.0.13, and 2.1.0–2.1.3, where an unauthenticated JMX/RMI interface bound to all network interfaces allows remote attackers to execute arbitrary Java code via RMI. The connected advisories indicate this is a regression path tracked in lat...

7.5CVSS9.7AI score0.06692EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder