Cassandra
by Apache
Standard maintenance is sufficient
Cassandra has low exploitation rates. Attackers rarely target this software's known vulnerabilities.
What to do
- Keep automatic updates enabled
- No urgent action needed
- Review periodically as part of normal maintenance
What Attackers Target
Vulnerabilities with high exploit probability
16.7%
Confirmed actively exploited (CISA)
8.3%
Public exploit code available
0.0%
Based on 12 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2016-3427 | 9.8 | 94.0% | Yes |
| CVE-2021-44521 | 9.1 | 90.6% | — |
| CVE-2016-4970 | 7.5 | 8.2% | — |
| CVE-2019-2684 | 5.9 | 1.3% | — |
| CVE-2020-17516 | 7.5 | 0.9% | — |
| CVE-2018-8016 | 9.8 | 0.6% | — |
| CVE-2025-23015 | 8.8 | 0.4% | — |
| CVE-2020-13946 | 5.9 | 0.3% | — |
| CVE-2025-24860 | 5.4 | 0.2% | — |
| CVE-2024-27137 | 5.3 | 0.1% | — |
| CVE-2025-26467 | 8.8 | 0.1% | — |
| CVE-2023-30601 | 7.8 | 0.0% | — |
11
/ 100
low-risk
Active Threat
9/50 · Minimal
Exploit Availability
2/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.