Users of Apache Cassandra are being urged to upgrade their versions after JFrog's Security Research team disclosed a remote code execution vulnerability that they said is "easy to exploit and has the ...

The latest trends and issues around the use of open source software in the enterprise. After two years of anticipation, Bromhead notes that the beta release of Apache Cassandra 4.0 is now available.

On the plus side, only instances with non-standard not recommended configurations are vulnerable. On the downside, those configurations aren’t easy to track down, and it’s easy as pie to exploit.