CVE-2024-27137

Summary

CVE-2024-27137 is a newly identified vulnerability in Apache Cassandra that allows local attackers to manipulate the RMI registry, enabling man-in-the-middle attacks. Attackers can capture usernames and passwords used to access the JMX interface, which they can then utilize to perform unauthorized operations. This vulnerability is similar to CVE-2020-13946, but the affected Java option has been changed in JDK10. Versions of Apache Cassandra from 4.0.2 through 5.0.2, running on Java 11, are affected. To mitigate this issue, operators are advised to upgrade to Apache Cassandra releases equal to or later than 4.0.15, 4.1.8, or 5.0.3, which address this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.