Zero Day MonitorZDM

← Back to list

8.8

CVE-2026-27314EXPLOITEDPATCHED

apache software foundation · apache cassandra

Apache Cassandra: Privilege escalation via ADD IDENTITY authorization bypass

Description

Privilege escalation in Apache Cassandra 5.0 on an mTLS environment using MutualTlsAuthenticator allows a user with only CREATE permission to associate their own certificate identity with an arbitrary role, including a superuser role, and authenticate as that role via ADD IDENTITY. Users are recommended to upgrade to version 5.0.7+, which fixes this issue.

Affected Products

Vendor	Product	Versions
apache software foundation	apache cassandra	maven/org.apache.cassandra:cassandra-all: >= 5.0-alpha1, < 5.0.7

References

https://lists.apache.org/thread/zrng82ddy4rpsmfyk582v6hqxcqrbz7f(vendor-advisory)

Related News (3 articles)

Tier B

BSI Advisories11h ago

[NEU] [hoch] Apache Cassandra: Mehrere Schwachstellen

→ No new info (linked only)

Tier C

oss-security1d ago

CVE-2026-27314: Apache Cassandra: Privilege escalation via ADD IDENTITY authorization bypass

→ No new info (linked only)

Tier C

VulDB1d ago

CVE-2026-27314 | Apache Cassandra up to 5.0.6 ADD IDENTITY authorization

→ No new info (linked only)

CVSS 3.18.8 HIGH

VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

org.apache.cassandra:cassandra-all@5.0.7

CWECWE-267

PublishedApr 7, 2026

Last enriched11h agov2

Trending Score63

Source articles3

Independent3

Info Completeness10/14

Missing: epss, kev, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2026-34197EXP

Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Authenticated users could perform RCE via Jolokia MBeans

HIGHCVE-2026-35554

Apache Kafka Clients: Kafka Producer Message Corruption and Misrouting via Buffer Pool Race Condition

MEDIUMCVE-2026-27315

Apache Cassandra: cqlsh history sensitive information leak

MEDIUMCVE-2026-33227

Apache ActiveMQ Client, Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ Web, Apache ActiveMQ: Improper Limitation of a Pathname to a Restricted Classpath Directory

LOWCVE-2026-32588

Apache Cassandra: Authenticated DoS via ALTER ROLE Password Hashing

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 7, 2026

Discovered by ZDM

Apr 7, 2026

Actively Exploited

Apr 8, 2026

Exploit Available

Apr 8, 2026

Patch Available

Apr 8, 2026

Updated: severity, exploitAvailable, activelyExploited

Apr 8, 2026

Version History

v2

Last enriched 11h ago

v2Tier B11h ago

Updated severity to HIGH and marked the vulnerability as exploit available and actively exploited.

severityexploitAvailableactivelyExploited

via BSI Advisories

v11d ago

Initial creation