CVE-2026-27314— Apache Cassandra: Privilege escalation via ADD IDENTITY authorization bypass
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-27314
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Apache Cassandra: Privilege escalation via ADD IDENTITY authorization bypass
Source: NVD (National Vulnerability Database)
Vulnerability Description
Privilege escalation in Apache Cassandra 5.0 on an mTLS environment using MutualTlsAuthenticator allows a user with only CREATE permission to associate their own certificate identity with an arbitrary role, including a superuser role, and authenticate as that role via ADD IDENTITY. Users are recommended to upgrade to version 5.0.7+, which fixes this issue.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
特权定义了不安全动作
Source: NVD (National Vulnerability Database)
Vulnerability Title
Apache Cassandra 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Apache Cassandra是美国阿帕奇(Apache)基金会的一个分布式Nosql数据库。 Apache Cassandra 5.0版本存在安全漏洞,该漏洞源于在mTLS环境中使用MutualTlsAuthenticator时权限分配不当,可能导致权限提升。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Apache Software Foundation | Apache Cassandra | 5.0 ~ 5.0.6 | - |
II. Public POCs for CVE-2026-27314
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-27314
请登录查看更多情报信息。
Same Patch Batch · Apache Software Foundation · 2026-04-07 · 6 CVEs total
| CVE-2026-34197 | Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Authenticated users could pe | |
| CVE-2026-33227 | Apache ActiveMQ Client, Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ Web, | |
| CVE-2026-35554 | Apache Kafka Clients: Kafka Producer Message Corruption and Misrouting via Buffer Pool Rac | |
| CVE-2026-27315 | Apache Cassandra: cqlsh history sensitive information leak | |
| CVE-2026-32588 | Apache Cassandra: Authenticated DoS via ALTER ROLE Password Hashing |
IV. Related Vulnerabilities
Same product: Apache Cassandra
- CVE-2026-32588
Apache Cassandra: Authenticated DoS via ALTER ROLE Password - CVE-2026-27315
Apache Cassandra: cqlsh history sensitive information leak - CVE-2025-26467
Apache Cassandra: User with MODIFY permission on ALL KEYSPAC - CVE-2024-27137
Apache Cassandra: unrestricted deserialization of JMX authen - CVE-2025-24860
Apache Cassandra: CassandraNetworkAuthorizer and CassandraCI
Same vendor: Apache Software Foundation
- CVE-2026-40914
Apache Artemis Stomp Protocol, Apache ActiveMQ Artemis Stomp - CVE-2025-48977
Apache Ignite: REST HTTP arbitrary file read vulnerability - CVE-2026-40564
Apache Flink Kubernetes Operator: Server-Side Request Forger - CVE-2026-48589
Apache Shiro: Jakarta EE open redirect via untrusted Referer - CVE-2026-44598
Apache Shiro Jakarta EE module: Open redirect and SSRF (requ
V. Comments for CVE-2026-27314
No comments yet