4 matches found
CVE-2025-26467
A Privilege Defined With Unsafe Actions vulnerability exists in Apache Cassandra. In affected versions, a user with MODIFY permission on all keyspaces can exploit unsafe operations against certain system resources to escalate privileges and gain superuser access within the Cassandra cluster. This...
CVE-2025-26467
creationtimestamp| type| source ---|---|--- 2025-02-11 16:23:28+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lhw2zenr6a2t...
com.ericsson.bss.cassandra.ecaudit:ecaudit_c4.0 (>=2.9.0 <=3.1.3), com.ericsson.bss.cassandra.ecaudit:ecaudit_c4.1 (>=3.0.0 <=3.1.0) +46 more potentially affected by CVE-2025-23015 +1 more via org.apache.cassandra:cassandra-all (>=4.0-alpha3 <=4.1.6)
org.apache.cassandra:cassandra-all MAVEN version =4.0-alpha3, =2.9.0, =3.0.0, =1.0.2, =1.1, =1.3 - com.instaclustr:sstable-generator-cassandra-4-0-0 =1.0 - com.instaclustr:sstable-generator-cassandra-4-0-7 =1.0 - com.instaclustr:sstable-generator-cassandra-4-1-0 =1.0 and more Source cves:...
com.ericsson.bss.cassandra.ecaudit:ecaudit_c5.0 (>=3.1.0 <=3.1.1) potentially affected by CVE-2025-23015 +1 more via org.apache.cassandra:cassandra-all (>=5.0.0 <=5.0.2)
org.apache.cassandra:cassandra-all MAVEN version =5.0.0, =3.1.0, =3.1.1 Source cves: CVE-2025-23015, CVE-2025-26467 Source advisory: SNYK:JAVA-ORGAPACHECASSANDRA-8688120...