anonhaven
Ad

CVE-2026-27315

MEDIUM CVSS 3.1: 5.5 EPSS 0.01%
Updated Apr 09, 2026
Apache
Parameter Value
CVSS 5.5 (MEDIUM)
Fixed In 4.0.20
Type CWE-532
Vendor Apache
Public PoC No

Sensitive Information Leak in cqlsh in Apache Cassandra 4.0 allows access to sensitive information, like passwords, from previously executed cqlsh command via  ~/.cassandra/cqlsh_history local file access. Users are recommended to upgrade to version 4.0.20, which fixes this issue. -- Description: Cassandra's command-line tool, cqlsh, provides a command history feature that allows users to recall previously executed commands using the up/down arrow keys. These history records are saved in the ~/.cassandra/cqlsh_history file in the user's home directory.

However, cqlsh does not redact sensitive information when saving command history. This means that if a user executes operations involving passwords (such as logging in or creating users) within cqlsh, these passwords are permanently stored in cleartext in the history file on the disk.

Attack Parameters

Attack Vector
Local
Requires local access
Attack Complexity
Low
Easy to exploit
Privileges Required
Low
Basic privileges needed
User Interaction
None
No user interaction needed

Impact Assessment

Confidentiality
High
Complete data leak
Integrity
None
No data modification
Availability
None
No disruption

CVSS Vector v3.1

Weakness Type (CWE)

CWE-532

References 3

https://issues.apache.org/jira/browse/CASSANDRA-21180
security@apache.org
https://lists.apache.org/thread/ft77zrk2mzt8qsch4g6jqjj4901d22k3
security@apache.org
http://www.openwall.com/lists/oss-security/2026/04/07/8
af854a3a-2127-422b-91ae-364da2661108
Share Post Share Share Share

Related Vulnerabilities

CVE-2026-30778

Apache

7.5

CVE-2026-5088

Apache

7.5

CVE-2026-33929

Apache

4.3

CVE-2026-33704

Apache

8.8

CVE-2026-40023

Apache

6.3