Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs
May 31, 2023Rewterz Threat Alert – DarkSide Ransomware – Active IOCs
May 31, 2023Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs
May 31, 2023Rewterz Threat Alert – DarkSide Ransomware – Active IOCs
May 31, 2023Severity
High
Analysis Summary
CVE-2023-30601
Apache Cassandra could allow a local authenticated attacker to gain elevated privileges on the system, caused by a flaw in the FQL/Audit logs implementation. By executing a specially crafted nodetool archive command, an attacker could exploit this vulnerability to gain elevated privileges.
Impact
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2023-30601
Affected Vendors
Apache
Affected Products
- Apache Cassandra 4.0.0
- Apache Cassandra 4.0.9
- Apache Cassandra 4.1.0
- Apache Cassandra 4.1.1
Remediation
Refer to Apache Website for patch, upgrade or suggested workaround information.