VDB
CVE-2024-27137
CVE-2024-27137
PUBLISHED
Apache Cassandra: unrestricted deserialization of JMX authentication credentials
EPSS 0.10% · 28.2th percentile
Risk Scores
EPSS Score
0.10%
28.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | cassandra | 4.1.0, 5.0.0, 4.0.2 |
| Bitnami | cassandra | 4.0.2, 4.1.0, 4.0.2 |
Exploit Intelligence
- CIRCL published-proof-of-concept: CVE-2024-27137 (circl-sighting)
- CIRCL seen: CVE-2024-27137 (circl-sighting)
- CIRCL seen: CVE-2024-27137 (circl-sighting)
- CIRCL seen: CVE-2024-27137 (circl-sighting)
- CIRCL seen: CVE-2024-27137 (circl-sighting)
- CIRCL seen: CVE-2024-27137 (circl-sighting)
- CIRCL seen: CVE-2024-27137 (circl-sighting)
- CIRCL seen: CVE-2024-27137 (circl-sighting)
- https://security.netapp.com/advisory/ntap-20250214-0004/ (circl)
- https://lists.apache.org/thread/jsk87d9yv8r204mgqpz1qxtp5wcrpysm (circl)
Timeline
- Feb 3, 2025 CVE Published
- Feb 3, 2025 PoC Published
- Feb 4, 2025 PoC Published
- Feb 4, 2025 PoC Published
- Feb 4, 2025 PoC Published
- Feb 4, 2025 PoC Published
- Feb 4, 2025 PoC Published
- Feb 4, 2025 PoC Published
- Feb 4, 2025 CVE Updated
- Feb 5, 2025 EPSS Score
- Feb 7, 2025 PoC Published
- Feb 20, 2025 EPSS Score