CVE-2025-24860 - Incorrect Authorization Allows Unauthorized Data Center Access in Apache Cassandra
Date Published: June, 2024
Vulnerability Type: Incorrect Authorization
Affected Product: Apache Cassandra
CVSS Score: 7.5 (High)
CVE Reference: CVE-2025-24860 on NVD
Apache Cassandra is
CVE-2024-27137 - How Hackers Can Steal JMX Credentials in Apache Cassandra via RMI Registry Hijack
Apache Cassandra is a favorite distributed database, powering some of the biggest applications for its great performance and scalability. But recently, a new vulnerability—CVE-2024-27137—
CVE-2025-23015 - Privilege Defined With Unsafe Actions in Apache Cassandra—Full Technical Breakdown
Apache Cassandra is a powerful and widely used distributed NoSQL database platform. It’s known for high availability and scalability, making it popular for handling
CVE-2024-40890 - Exploiting Command Injection in Zyxel VMG4325-B10A Legacy DSL CPE (Firmware 1.00(AAFR.4)C_20170615)
---
Introduction
In June 2024, security researchers uncovered a serious vulnerability in the Zyxel VMG4325-B10A legacy Customer Premises Equipment (CPE), specifically in its outdated firmware
CVE-2024-40891 - Exploiting Unsupported When Assigned Command Injection in Zyxel VMG4325-B10A DSL CPE
In June 2024, security researchers discovered a post-authentication command injection vulnerability in the Zyxel VMG4325-B10A DSL CPE (Customer Premises Equipment). Tracked as CVE-2024-40891, this critical
Episode
00:00:00
00:00:00