CVE-2021-44521

Exploit

EPSS 91.53%
Veröffentlicht 11.02.2022 13:15:07
Zuletzt bearbeitet 21.11.2024 06:31:09
Quelle security@apache.org
CVE-Watchlists
Login
Unerledigt
Login

When running Apache Cassandra with the following configuration: enable_user_defined_functions: true enable_scripted_user_defined_functions: true enable_user_defined_functions_threads: false it is possible for an attacker to execute arbitrary code on the host. The attacker would need to have enough permissions to create user defined functions in the cluster to be able to exploit this. Note that this configuration is documented as unsafe, and will continue to be considered unsafe after this CVE.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Apache ≫ Cassandra Version >= 3.0.0 < 3.0.26

Apache ≫ Cassandra Version >= 3.11.0 < 3.11.12

Apache ≫ Cassandra Version >= 4.0.0 < 4.0.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	91.53%	0.996

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.1	2.3	6	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
nvd@nist.gov	8.5	6.8	10	AV:N/AC:M/Au:S/C:C/I:C/A:C

CWE-732 Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

http://www.openwall.com/lists/oss-security/2022/02/11/4

Third Party Advisory

Mailing List

https://jfrog.com/blog/cve-2021-44521-exploiting-apache-cassandra-user-defined-functions-for-remote-code-execution/

Third Party Advisory

Exploit

Mitigation

https://lists.apache.org/thread/y4nb9s4co34j8hdfmrshyl09lokm7356

Vendor Advisory

Mailing List

Issue Tracking

https://security.netapp.com/advisory/ntap-20220225-0001/

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-44521

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-44521

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-44521

EUVD