Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2020/12/02 12:0 a.m.36 views

Apache Cassandra 1.2.x <= 1.2.19 / 2.0.x <= 2.0.13 / 2.1.x <= 2.1.3 RCE

The default configuration in Apache Cassandra running on the remote host version 1.2.0 through 1.2.19, 2.0.0 through 2.0.13, and 2.1.0 through 2.1.3 bound an unauthenticated JMX/RMI interface to all network interfaces. A remote attacker able to access the RMI, an API for the transport and remote...

7.5CVSS8.9AI score0.06692EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/06/28 4:0 p.m.29 views

CVE-2018-8016

The default configuration in Apache Cassandra 3.8 through 3.11.1 binds an unauthenticated JMX/RMI interface to all network interfaces, which allows remote attackers to execute arbitrary Java code via an RMI request. This issue is a regression of CVE-2015-0225. The regression was introduced in...

9.7AI score0.02289EPSS
Exploits0References1
CVE
CVE
added 2018/06/28 4:0 p.m.108 views

CVE-2018-8016

CVE-2018-8016 affects Apache Cassandra 3.8–3.11.1, where the default configuration binds an unauthenticated JMX/RMI interface to all network interfaces, allowing a remote attacker to execute arbitrary Java code via an RMI request. This is a regression of CVE-2015-0225, introduced in CASSANDRA-121...

9.8CVSS9.5AI score0.02289EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2015/04/03 2:0 p.m.40 views

CVE-2015-0225

The default configuration in Apache Cassandra 1.2.0 through 1.2.19, 2.0.0 through 2.0.13, and 2.1.0 through 2.1.3 binds an unauthenticated JMX/RMI interface to all network interfaces, which allows remote attackers to execute arbitrary Java code via an RMI request...

9.8AI score0.06692EPSS
Exploits0References6
Rows per page
Query Builder