{"schema_version": "1.6.1", "id": "CVE-2025-23015", "summary": "User with MODIFY permission on ALL KEYSPACES can escalate privileges to superuser via unsafe actions", "details": "Privilege Defined With Unsafe Actions vulnerability in Apache Cassandra. An user with MODIFY permission ON ALL KEYSPACES can escalate privileges to superuser within a targeted Cassandra cluster via unsafe actions to a system resource. Operators granting data MODIFY permission on all keyspaces on affected versions should review data access rules for potential breaches.\n\nThis issue affects Apache Cassandra through 3.0.30, 3.11.17, 4.0.16, 4.1.7, 5.0.2.\n\nUsers are recommended to upgrade to versions 3.0.32, 3.11.19, 4.0.17, 4.1.8, 5.0.3, which fixes the issue.\n\nAddendum:\n\n\n\n\n\nA performance regression was detected in the security releases 3.0.30 [1] and 3.11.18 [2]. Affected users are recommended to upgrade to versions 3.0.32 and 3.11.19 instead.\n\nThe fix to this vulnerability was incorrectly applied to 4.0.16, and affected users in the 4.0 series are recommended to upgrade to 4.0.17 (see CVE-2025-26467 for more information).\n\nRemaining versions are unaffected.\n\n[1] -  https://lists.apache.org/thread/yprngr9cmp9c43m1c56thv1v0v6y5ywq \n[2] -  https://lists.apache.org/thread/hc9shwlm1kmxdxosbh3qo2xooqoo3sc6", "affected": [{"ranges": [{"type": "SEMVER", "events": [{"introduced": "3.0.0"}, {"last_affected": "3.0.0"}]}, {"type": "SEMVER", "events": [{"introduced": "3.1.0"}, {"last_affected": "3.1.0"}]}, {"type": "SEMVER", "events": [{"introduced": "4.0.0"}, {"last_affected": "4.0.0"}]}, {"type": "SEMVER", "events": [{"introduced": "4.1.0"}, {"last_affected": "4.1.0"}]}, {"type": "SEMVER", "events": [{"introduced": "5.0.0"}, {"last_affected": "5.0.0"}]}]}], "references": [{"type": "WEB", "url": "https://lists.apache.org/thread/jmks4msbgkl65ssg69x728sv1m0hwz3s"}]}