exploitDog

CVE-2024-47217

Опубликовано: 03 апр. 2025

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

An issue was discovered in Iglu Server 0.13.0 and below. It is similar to CVE-2024-47214, but involves an authenticated endpoint. It can render Iglu Server completely unresponsive. If the operation of Iglu Server is not restored, event processing in the pipeline would eventually halt.

Ссылки

https://support.snowplow.io/hc/en-us/articles/26318139354909-Update-Critical-Snowplow-Security-Updates-Impact-on-Open-Source-Software-Users
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:snowplow:iglu_server:*:*:*:*:*:*:*:*

Версия до 0.13.1 (исключая)

EPSS

Процентиль: 54%

0.00311

Низкий

6.5 Medium

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-fphf-v8m4-xjvx

CVSS3: 6.5

github

10 месяцев назад

An issue was discovered in Iglu Server 0.13.0 and below. It is similar to CVE-2024-47214, but involves an authenticated endpoint. It can render Iglu Server completely unresponsive. If the operation of Iglu Server is not restored, event processing in the pipeline would eventually halt.

EPSS

Процентиль: 54%

0.00311

Низкий

6.5 Medium

CVSS3

Дефекты

NVD-CWE-noinfo