CVE-2026-27314 | Apache Cassandra up to 5.0.6 ADD IDENTITY authorization

Inserito da Angelo Barbosa | Apr 7, 2026 | CVE

A vulnerability was found in Apache Cassandra up to 5.0.6. It has been classified as critical. This affects an unknown function of the component ADD IDENTITY Handler. This manipulation causes authorization bypass.

The identification of this vulnerability is CVE-2026-27314. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2026-27314 | Apache Cassandra up to 5.0.6 ADD IDENTITY authorization

Post correlati

CVE-2025-27816 | Arctera InfoScale up to 8.0.2 Windows Plugin_Host Service deserialization

CVE-2024-52599 | Enalean Tuleap Community Edition/Tuleap Enterprise Edition Gantt Chart cross site scripting

CVE-2026-31842 | Tinyproxy up to 1.11.3 HTTP Request src/reqs.c is_chunked_transfer request smuggling

CVE-2024-27082 | Cacti up to 1.2.26 cross site scripting