FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-16 19:33:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
60624f63-9180-11ed-acbe-b42e991fc52e	cassandra3 -- arbitrary code execution Marcus Eriksson reports: When running Apache Cassandra with the following configuration: enable_user_defined_functions: true enable_scripted_user_defined_functions: true enable_user_defined_functions_threads: false it is possible for an attacker to execute arbitrary code on the host. The attacker would need to have enough permissions to create user defined functions in the cluster to be able to exploit this. Discovery 2022-02-11 Entry 2023-01-11 cassandra3 < 3.11.13 CVE-2021-44521 https://www.cvedetails.com/cve/CVE-2021-44521

VuXML ID

Description

60624f63-9180-11ed-acbe-b42e991fc52e

cassandra3 -- arbitrary code execution

Marcus Eriksson reports:

When running Apache Cassandra with the following configuration: enable_user_defined_functions: true enable_scripted_user_defined_functions: true enable_user_defined_functions_threads: false it is possible for an attacker to execute arbitrary code on the host. The attacker would need to have enough permissions to create user defined functions in the cluster to be able to exploit this.

Discovery 2022-02-11
Entry 2023-01-11
cassandra3

< 3.11.13

CVE-2021-44521
https://www.cvedetails.com/cve/CVE-2021-44521