VDB

BIT-cassandra-2025-24860

BIT-cassandra-2025-24860 PUBLISHED CVSS 5.400000095367432 MEDIUM

Apache Cassandra: CassandraNetworkAuthorizer and CassandraCIDRAuthorizer can be bypassed allowing access to different network regions

Risk Scores

CVSS v3.1
5.400000095367432
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Affected Products

VendorProductVersions
Bitnamicassandra4.0.0, 4.1.0, 5.0.0

Timeline

  • Feb 6, 2025 CVE Published
  • May 20, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›