CVE-2020-13946 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2020-13946 Interim 1 19 2022-11-27T00:57:42Z current 2021-05-30T14:40:47Z 2022-11-27T00:57:42Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2020-13946 In Apache Cassandra, all versions prior to 2.1.22, 2.2.18, 3.0.22, 3.11.8 and 4.0-beta2, it is possible for a local attacker without access to the Apache Cassandra process or configuration files to manipulate the RMI registry to perform a man-in-the-middle attack and capture user names and passwords used to access the JMX interface. The attacker can then use these credentials to access the JMX interface and perform unauthorised operations. Users should also be aware of CVE-2019-2684, a JRE vulnerability that enables this issue to be exploited remotely. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings HPE Helion OpenStack 8 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 cassandra cassandra-tools cassandra as a component of HPE Helion OpenStack 8 cassandra-tools as a component of HPE Helion OpenStack 8 cassandra as a component of SUSE OpenStack Cloud 8 cassandra-tools as a component of SUSE OpenStack Cloud 8 cassandra as a component of SUSE OpenStack Cloud 9 cassandra-tools as a component of SUSE OpenStack Cloud 9 cassandra as a component of SUSE OpenStack Cloud Crowbar 8 cassandra-tools as a component of SUSE OpenStack Cloud Crowbar 8 cassandra as a component of SUSE OpenStack Cloud Crowbar 9 cassandra-tools as a component of SUSE OpenStack Cloud Crowbar 9 In Apache Cassandra, all versions prior to 2.1.22, 2.2.18, 3.0.22, 3.11.8 and 4.0-beta2, it is possible for a local attacker without access to the Apache Cassandra process or configuration files to manipulate the RMI registry to perform a man-in-the-middle attack and capture user names and passwords used to access the JMX interface. The attacker can then use these credentials to access the JMX interface and perform unauthorised operations. Users should also be aware of CVE-2019-2684, a JRE vulnerability that enables this issue to be exploited remotely. CVE-2020-13946 HPE Helion OpenStack 8:cassandra HPE Helion OpenStack 8:cassandra-tools SUSE OpenStack Cloud 8:cassandra SUSE OpenStack Cloud 8:cassandra-tools SUSE OpenStack Cloud 9:cassandra SUSE OpenStack Cloud 9:cassandra-tools SUSE OpenStack Cloud Crowbar 8:cassandra SUSE OpenStack Cloud Crowbar 8:cassandra-tools SUSE OpenStack Cloud Crowbar 9:cassandra SUSE OpenStack Cloud Crowbar 9:cassandra-tools moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N