Lucene search
Veracode Vulnerability DatabaseVERACODE:6848HistoryJun 26, 2018 - 7:42 a.m.
Remote Code Execution (RCE)
2018-06-2607:42:20
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
EPSS
0.008
Percentile
81.8%
apache-cassandra is vulnerable to remote code execution (RCE) attacks. The library binds unauthenticated Remote Method Invocation (RMI) Interfaces to all network interfaces, allowing a malicious user to invoke an RMI request to inject and execute arbitrary Java code. This is a regression of CVE-2015-0225.
Related
redhatcve
redhatcve
CVE-2018-8016
2018-06-27 09:49:11
github
github
Missing Authentication for Critical Function in Apache Cassandra
2022-05-13 01:53:28
osv
osv
Missing Authentication for Critical Function in Apache Cassandra
2022-05-13 01:53:28
cvelist
cvelist
CVE-2018-8016
2018-06-28 16:00:00
CVE-2015-0225
2015-04-03 14:00:00
prion
prion
Default configuration
2018-06-28 16:29:00
Default configuration
2015-04-03 14:59:00
cve
cve
CVE-2018-8016
2018-06-28 16:29:00
CVE-2015-0225
2015-04-03 14:59:00
nvd
nvd
CVE-2018-8016
2018-06-28 16:29:00
CVE-2015-0225
2015-04-03 14:59:00
nessus
nessus
Apache Cassandra 3.8.x < 3.11.1 RCE
2020-12-02 00:00:00
Apache Cassandra 1.2.x <= 1.2.19 / 2.0.x <= 2.0.13 / 2.1.x <= 2.1.3 RCE
2020-12-02 00:00:00
ibm
ibm
openvas
openvas
Apache Cassandra < 3.11.2 RCE Vulnerability
2018-06-29 00:00:00
redhat
redhat
(RHSA-2015:1947) Important: Red Hat JBoss Operations Network 3.3.4 update
2015-10-28 14:33:28
veracode
veracode
Remote Code Execution (RCE)
2019-12-12 08:16:04
freebsd
freebsd
cassandra -- remote execution of arbitrary code
2015-04-01 00:00:00
securityvulns
securityvulns
[SECURITY ANNOUNCEMENT] CVE-2015-0225
2015-05-12 00:00:00