Описание
This vulnerability affects Snowplow Collector 3.x before 3.3.0 (unless it’s set up behind a reverse proxy that establishes payload limits). It involves sending very large payloads to the Collector and can render it unresponsive to the rest of the requests. As a result, data would not enter the pipeline and would be potentially lost.
Уязвимые конфигурации
Конфигурация 1Версия от 3.0.0 (включая) до 3.3.0 (исключая)
cpe:2.3:a:snowplow:stream_collector:*:*:*:*:*:*:*:*
EPSS
Процентиль: 58%
0.00368
Низкий
7.5 High
CVSS3
Дефекты
CWE-400
Связанные уязвимости
CVSS3: 7.5
github
10 месяцев назад
This vulnerability affects Snowplow Collector 3.x before 3.3.0 (unless it’s set up behind a reverse proxy that establishes payload limits). It involves sending very large payloads to the Collector and can render it unresponsive to the rest of the requests. As a result, data would not enter the pipeline and would be potentially lost.
EPSS
Процентиль: 58%
0.00368
Низкий
7.5 High
CVSS3
Дефекты
CWE-400