exploitDog

CVE-2024-47214

Опубликовано: 03 апр. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

An issue was discovered in Iglu Server 0.13.0 and below. It is similar to CVE-2024-47212, but involves a different kind of malicious payload. As above, it can render Iglu Server completely unresponsive. If the operation of Iglu Server is not restored, event processing in the pipeline would eventually halt.

Ссылки

https://support.snowplow.io/hc/en-us/articles/26318139354909-Update-Critical-Snowplow-Security-Updates-Impact-on-Open-Source-Software-Users
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:snowplow:iglu_server:*:*:*:*:*:*:*:*

Версия до 0.13.1 (исключая)

EPSS

Процентиль: 60%

0.00402

Низкий

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-qcwf-jj36-gr7m

CVSS3: 7.5

github

10 месяцев назад

An issue was discovered in Iglu Server 0.13.0 and below. It is similar to CVE-2024-47212, but involves a different kind of malicious payload. As above, it can render Iglu Server completely unresponsive. If the operation of Iglu Server is not restored, event processing in the pipeline would eventually halt.

EPSS

Процентиль: 60%

0.00402

Низкий

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo