CVE-2026-32588

CVSS v2.0

6.8

Medium

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Apache Cassandra versions 4.0 through 4.0.19, 4.1 through 4.1.10, and 5.0 through 5.0.6

Description An authenticated user can cause increased query latencies through repeated password changes in Apache Cassandra. This issue affects versions 4.0, 4.1, and 5.0.

Recommendations Upgrade to version 4.0.20 Upgrade to version 4.1.11 Upgrade to version 5.0.7

Fix

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

BDU:2026-04927

CLEANSTART-2026-DD05788

CLEANSTART-2026-RN56220

CVE-2026-32588

GHSA-QFFM-GF3J-6MVG

Affected Products

Apache Cassandra

CVE-2026-32588

Weakness Enumeration

Related Identifiers

Affected Products

References · 236