pkg:maven/org.apache.cassandra/cassandra-all
Type
maven
Namespace
org.apache.cassandra
Name
cassandra-all
Known advisories, vulnerabilities and fixes for org.apache.cassandra/cassandra-all package.
Critical
2
High
2
Moderate
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | = 4.0-beta1 >= 3.11.0, < 3.11.8 >= 3.0.0, < 3.0.22 >= 2.2.0, < 2.2.18 >= 2.1.0, < 2.1.12 |
CVE-2020-13946
|
MAVEN:GHSA-24WW-MC5X-XC43 | Man-in-the-middle attack in Apache Cassandra | moderate |
2021-05-07T15:54:46
(3 years ago) |
|
Fixed | = 4.0-beta2 = 3.11.8 = 3.0.22 = 2.2.18 = 2.1.12 |
CVE-2020-13946
|
MAVEN:GHSA-24WW-MC5X-XC43 | Man-in-the-middle attack in Apache Cassandra | moderate |
2021-05-07T15:54:46
(3 years ago) |
|
Affected | >= 3.11.0, < 3.11.10 >= 2.1.0, < 3.0.24 |
CVE-2020-17516
|
MAVEN:GHSA-2VXM-VP4C-FJFW | Authentication Bypass in Apache Cassandra | high |
2022-02-09T01:01:22
(2 years ago) |
|
Fixed | = 3.11.10 = 3.0.24 |
CVE-2020-17516
|
MAVEN:GHSA-2VXM-VP4C-FJFW | Authentication Bypass in Apache Cassandra | high |
2022-02-09T01:01:22
(2 years ago) |
|
Affected | >= 3.8, <= 3.11.1 |
CVE-2018-8016
|
MAVEN:GHSA-52GQ-7J6C-XW6X | Missing Authentication for Critical Function in Apache Cassandra | critical |
2022-05-13T01:53:28
(2 years ago) |
|
Fixed | = 3.11.2 |
CVE-2018-8016
|
MAVEN:GHSA-52GQ-7J6C-XW6X | Missing Authentication for Critical Function in Apache Cassandra | critical |
2022-05-13T01:53:28
(2 years ago) |
|
Affected | >= 4.0.0, < 4.0.2 >= 3.11.0, < 3.11.12 < 3.0.26 |
CVE-2021-44521
|
MAVEN:GHSA-8FFC-79XG-29W8 | Apache Cassandra vulnerable to Code Injection due to unsafe configuration | critical |
2022-02-12T00:00:48
(2 years ago) |
|
Fixed | = 4.0.2 = 3.11.12 = 3.0.26 |
CVE-2021-44521
|
MAVEN:GHSA-8FFC-79XG-29W8 | Apache Cassandra vulnerable to Code Injection due to unsafe configuration | critical |
2022-02-12T00:00:48
(2 years ago) |
|
Affected | < 4.0.10 >= 4.1.0, < 4.1.2 |
CVE-2023-30601
|
MAVEN:GHSA-M9P2-J4HG-G373 | Apache Cassandra: Privilege escalation when enabling FQL/Audit logs | high |
2023-07-06T21:15:06
(14 months ago) |
|
Fixed | = 4.0.10 = 4.1.2 |
CVE-2023-30601
|
MAVEN:GHSA-M9P2-J4HG-G373 | Apache Cassandra: Privilege escalation when enabling FQL/Audit logs | high |
2023-07-06T21:15:06
(14 months ago) |