org.apache.cassandra:cassandra-all vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-32588Loworg.apache.cassandra:cassandra-all: Apache Cassandra has an authenticated DoS over CQLCVE-2026-27315Mediumorg.apache.cassandra:cassandra-all: Apache Cassandra has sensitive Information Leak in cqlshCVE-2026-27314Highorg.apache.cassandra:cassandra-all: Apache Cassandra is vulnerable to privilege escalation in an mTLS environment using MutualTlsAuthenticatorCVE-2025-26467Highorg.apache.cassandra:cassandra-all: Apache Cassandra: User with MODIFY permission on ALL KEYSPACES can escalate privileges to superuser via unsafe actions (4.0.16 only)CVE-2025-24860Mediumorg.apache.cassandra:cassandra-all: Apache Cassandra: CassandraNetworkAuthorizer and CassandraCIDRAuthorizer can be bypassed allowing access to different network regionsCVE-2024-27137Mediumorg.apache.cassandra:cassandra-all: Apache Cassandra: unrestricted deserialization of JMX authentication credentialsCVE-2025-23015Highorg.apache.cassandra:cassandra-all: Apache Cassandra: User with MODIFY permission on ALL KEYSPACES can escalate privileges to superuser via unsafe actionsCVE-2023-30601Highorg.apache.cassandra:cassandra-all: Apache Cassandra: Privilege escalation when enabling FQL/Audit logsCVE-2018-8016Criticalorg.apache.cassandra:cassandra-all: Missing Authentication for Critical Function in Apache CassandraCVE-2021-44521Criticalorg.apache.cassandra:cassandra-all: Apache Cassandra vulnerable to Code Injection due to unsafe configurationCVE-2020-17516Highorg.apache.cassandra:cassandra-all: Authentication Bypass in Apache CassandraCVE-2020-13946Mediumorg.apache.cassandra:cassandra-all: Man-in-the-middle attack in Apache Cassandra

Stop the waste.
Protect your environment with Kodem.