Known Vulnerabilities for Apache Cassandra by Apache Software Foundation
Listed below are 5 of the newest known vulnerabilities associated with "Apache Cassandra" by "Apache Software Foundation".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33844 json | Improper input validation in Azure Managed Instance for Apache Cassandra allows an authorized attacker to execute code over a... | Not Provided | 2026-05-07 | 2026-05-07 |
| CVE-2026-33109 json | Improper access control in Azure Managed Instance for Apache Cassandra allows an authorized attacker to execute code over a n... | Not Provided | 2026-05-07 | 2026-05-08 |
| CVE-2026-32588 json | Authenticated DoS over CQL in Apache Cassandra 4.0, 4.1, 5.0 allows authenticated user to raise query latencies via repeated ... | Not Provided | 2026-04-07 | 2026-04-09 |
| CVE-2026-27315 json | Sensitive Information Leak in cqlsh in Apache Cassandra 4.0 allows access to sensitive information, like passwords, from prev... | Not Provided | 2026-04-07 | 2026-04-09 |
| CVE-2026-27314 json | Privilege escalation in Apache Cassandra 5.0 on an mTLS environment using MutualTlsAuthenticator allows a user with only CR... | Not Provided | 2026-04-07 | 2026-04-08 |