CVE-2025-26467

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-26467
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-26467.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-26467
Aliases
Downstream
Published
2025-08-25T14:15:30Z
Modified
2025-10-10T05:01:22.400346Z
Summary
[none]
Details

Privilege Defined With Unsafe Actions vulnerability in Apache Cassandra. An user with MODIFY permission ON ALL KEYSPACES can escalate privileges to superuser within a targeted Cassandra cluster via unsafe actions to a system resource. Operators granting data MODIFY permission on all keyspaces on affected versions should review data access rules for potential breaches.

This issue affects Apache Cassandra 3.0.30, 3.11.17, 4.0.16, 4.1.7, 5.0.2, but this advisory is only for 4.0.16 because the fix to CVE-2025-23015 was incorrectly applied to 4.0.16, so that version is still affected.

Users in the 4.0 series are recommended to upgrade to version 4.0.17 which fixes the issue. Users from 3.0, 3.11, 4.1 and 5.0 series should follow recommendation from CVE-2025-23015.

References

Affected packages

Git / github.com/apache/cassandra

Affected ranges

Type
GIT
Repo
https://github.com/apache/cassandra
Events
Introduced
96f407bce56b98cd824d18e32ee012dbb99a0286
Fixed
09e7a4d6ae23b7ac5c9867235c9d900d0c99649a

Affected versions

cassandra-2.*

cassandra-2.1.12
cassandra-2.1.13
cassandra-2.1.14
cassandra-2.1.15
cassandra-2.1.16
cassandra-2.1.17
cassandra-2.1.18
cassandra-2.1.19
cassandra-2.1.20
cassandra-2.1.21
cassandra-2.1.22
cassandra-2.2.10
cassandra-2.2.11
cassandra-2.2.12
cassandra-2.2.13
cassandra-2.2.14
cassandra-2.2.15
cassandra-2.2.16
cassandra-2.2.17
cassandra-2.2.18
cassandra-2.2.19
cassandra-2.2.4
cassandra-2.2.5
cassandra-2.2.6
cassandra-2.2.8
cassandra-2.2.9

cassandra-3.*

cassandra-3.0.0
cassandra-3.0.1
cassandra-3.0.10
cassandra-3.0.11
cassandra-3.0.12
cassandra-3.0.13
cassandra-3.0.14
cassandra-3.0.15
cassandra-3.0.16
cassandra-3.0.17
cassandra-3.0.18
cassandra-3.0.19
cassandra-3.0.20
cassandra-3.0.21
cassandra-3.0.22
cassandra-3.0.23
cassandra-3.0.24
cassandra-3.0.25
cassandra-3.0.26
cassandra-3.0.28
cassandra-3.0.29
cassandra-3.0.3
cassandra-3.0.30
cassandra-3.0.4
cassandra-3.0.5
cassandra-3.0.6
cassandra-3.0.7
cassandra-3.0.9