exploitDog

CVE-2024-47212

Опубликовано: 03 апр. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

An issue was discovered in Iglu Server 0.13.0 and below. It involves sending very large payloads to a particular API endpoint of Iglu Server and can render it completely unresponsive. If the operation of Iglu Server is not restored, event processing in the pipeline would eventually halt.

Ссылки

https://support.snowplow.io/hc/en-us/articles/26318139354909-Update-Critical-Snowplow-Security-Updates-Impact-on-Open-Source-Software-Users
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:snowplow:iglu_server:*:*:*:*:*:*:*:*

Версия до 0.13.1 (исключая)

EPSS

Процентиль: 29%

0.00102

Низкий

7.5 High

CVSS3

Дефекты

CWE-400

Связанные уязвимости

GHSA-rwxg-r4cq-frp9

CVSS3: 7.5

github

10 месяцев назад

An issue was discovered in Iglu Server 0.13.0 and below. It involves sending very large payloads to a particular API endpoint of Iglu Server and can render it completely unresponsive. If the operation of Iglu Server is not restored, event processing in the pipeline would eventually halt.

EPSS

Процентиль: 29%

0.00102

Низкий

7.5 High

CVSS3

Дефекты

CWE-400