Published: 11/02/2022 Updated: 09/08/2022

CVSS v2 Base Score: 8.5 | Impact Score: 10 | Exploitability Score: 6.8

CVSS v3 Base Score: 9.1 | Impact Score: 6 | Exploitability Score: 2.3

VMScore: 760

Vector: AV:N/AC:M/Au:S/C:C/I:C/A:C

When running Apache Cassandra with the following configuration: enable_user_defined_functions: true enable_scripted_user_defined_functions: true enable_user_defined_functions_threads: false it is possible for an malicious user to execute arbitrary code on the host. The attacker would need to have enough permissions to create user defined functions in the cluster to be able to exploit this. Note that this configuration is documented as unsafe, and will continue to be considered unsafe after this CVE.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apache cassandra

When running Apache Cassandra with the following configuration: enable_user_defined_functions: true enable_scripted_user_defined_functions: true enable_user_defined_functions_threads: false it is possible for an attacker to execute arbitrary code on the host The attacker would need to have enough permissions to create user defined functions in the ...

Automated PoC of CVE-2021-44521

CVE-2021-44521 Automated PoC of CVE-2021-44521 Credits to original poc: jfrogcom/blog/cve-2021-44521-exploiting-apache-cassandra-user-defined-functions-for-remote-code-execution/ Requirements Cassandra-driver pip3 install cassandra-driver Usage python3 pocpy <ip> <cmd>

PyNmap Descrição: Script em python que recebe um (ou uma lista) de hosts por parâmetro, e realiza um port scan através de integração do python e nmap O código é resiliente a travamentos do nmap, pois caso ele não retorne a resposta em até 1 minuto (ou tempo parametrizado), a ação é interr

0day English | 中文各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将不断更新优秀项目列表 Fastjson RCE githubcom/dbgee/fastjson-rce Log4j RCE githubcom/dbgee/log4j2_rce redis RCE githubcom/Ridter/redis-rce Thinkphp RCE githubcom/helloexp/0day Windows RCE githubcom/smgorelik/Win

0day 由于众所周知的原因，原始仓库被删除，但保留了副本，forks和stars 清零不过请放心，还是原来的配方，原来的味道。为了避免再次出现这种情况找不到此项目，可以Follow 一下 English | 中文各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新优秀项目列

各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新

0day 由于众所周知的原因，原始仓库被删除，但保留了副本，forks和stars 清零不过请放心，还是原来的配方，原来的味道。为了避免再次出现这种情况找不到此项目，可以Follow 一下本仓库所有内容仅限用于学习交流 English | 中文各种CMS、各种平台、各种系统、各种软件漏洞的EXP�

0day English | 中文各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新优秀项目列表 Fastjson RCE githubcom/dbgee/fastjson-rce Log4j RCE githubcom/dbgee/log4j2_rce redis RCE githubcom/Ridter/redis-rce Thinkphp RCE githubcom/helloexp/0day Windows RCE githubcom/smgorelik/Win

https://github.com/TryGOTry/0day.git

CWE-732 https://lists.apache.org/thread/y4nb9s4co34j8hdfmrshyl09lokm7356 http://www.openwall.com/lists/oss-security/2022/02/11/4 https://jfrog.com/blog/cve-2021-44521-exploiting-apache-cassandra-user-defined-functions-for-remote-code-execution/https://security.netapp.com/advisory/ntap-20220225-0001/https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2021-44521 https://github.com/QHpix/CVE-2021-44521

Get Started

CVE-2021-44521

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect