May 2026: Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability
CVE-2026-33109 Published on May 7, 2026
Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability
Improper access control in Azure Managed Instance for Apache Cassandra allows an authorized attacker to execute code over a network.
Weakness Type
What is an Authorization Vulnerability?
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
CVE-2026-33109 has been classified to as an Authorization vulnerability or weakness.
Products Associated with CVE-2026-33109
stack.watch emails you whenever new vulnerabilities are published in Microsoft Cassandra or Microsoft Azure Managed Instance Apache Cassandra. Just hit a watch button to start following.
