Description

Cassandra is an open source distributed NoSQL database

Cassandra is designed to be accessed by trusted clients inside trusted environments. It's not recommended to have Cassandra service publicly accessible.

Remediation

It's recommended to restrict access to this service on production systems

References

Cassandra Security

Related Vulnerabilities

Pyramid debug mode

GraphQL Non-JSON Queries over GET: Potential CSRF Vulnerability

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5012)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2787)

WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.36)

Severity

Medium

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Configuration