Vulnerability Details CVE-2024-47214
An issue was discovered in Iglu Server 0.13.0 and below. It is similar to CVE-2024-47212, but involves a different kind of malicious payload. As above, it can render Iglu Server completely unresponsive. If the operation of Iglu Server is not restored, event processing in the pipeline would eventually halt.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.4%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2024-47214
-
cpe:2.3:a:snowplow:iglu_server:0.10.0
-
cpe:2.3:a:snowplow:iglu_server:0.10.1
-
cpe:2.3:a:snowplow:iglu_server:0.10.2
-
cpe:2.3:a:snowplow:iglu_server:0.11.0
-
cpe:2.3:a:snowplow:iglu_server:0.11.1
-
cpe:2.3:a:snowplow:iglu_server:0.12.0
-
cpe:2.3:a:snowplow:iglu_server:0.12.1
-
cpe:2.3:a:snowplow:iglu_server:0.2.0
-
cpe:2.3:a:snowplow:iglu_server:0.3.0
-
cpe:2.3:a:snowplow:iglu_server:0.4.0
-
cpe:2.3:a:snowplow:iglu_server:0.5.0
-
cpe:2.3:a:snowplow:iglu_server:0.6.0
-
cpe:2.3:a:snowplow:iglu_server:0.6.1
-
cpe:2.3:a:snowplow:iglu_server:0.6.2
-
cpe:2.3:a:snowplow:iglu_server:0.7.0
-
cpe:2.3:a:snowplow:iglu_server:0.8.0
-
cpe:2.3:a:snowplow:iglu_server:0.8.1
-
cpe:2.3:a:snowplow:iglu_server:0.8.2
-
cpe:2.3:a:snowplow:iglu_server:0.8.3
-
cpe:2.3:a:snowplow:iglu_server:0.8.4
-
cpe:2.3:a:snowplow:iglu_server:0.8.5
-
cpe:2.3:a:snowplow:iglu_server:0.8.6
-
cpe:2.3:a:snowplow:iglu_server:0.8.7
-
cpe:2.3:a:snowplow:iglu_server:0.9.0
-
cpe:2.3:a:snowplow:iglu_server:0.9.1