Vulnerability Details CVE-2024-47217
An issue was discovered in Iglu Server 0.13.0 and below. It is similar to CVE-2024-47214, but involves an authenticated endpoint. It can render Iglu Server completely unresponsive. If the operation of Iglu Server is not restored, event processing in the pipeline would eventually halt.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.2%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2024-47217
-
cpe:2.3:a:snowplow:iglu_server:0.10.0
-
cpe:2.3:a:snowplow:iglu_server:0.10.1
-
cpe:2.3:a:snowplow:iglu_server:0.10.2
-
cpe:2.3:a:snowplow:iglu_server:0.11.0
-
cpe:2.3:a:snowplow:iglu_server:0.11.1
-
cpe:2.3:a:snowplow:iglu_server:0.12.0
-
cpe:2.3:a:snowplow:iglu_server:0.12.1
-
cpe:2.3:a:snowplow:iglu_server:0.2.0
-
cpe:2.3:a:snowplow:iglu_server:0.3.0
-
cpe:2.3:a:snowplow:iglu_server:0.4.0
-
cpe:2.3:a:snowplow:iglu_server:0.5.0
-
cpe:2.3:a:snowplow:iglu_server:0.6.0
-
cpe:2.3:a:snowplow:iglu_server:0.6.1
-
cpe:2.3:a:snowplow:iglu_server:0.6.2
-
cpe:2.3:a:snowplow:iglu_server:0.7.0
-
cpe:2.3:a:snowplow:iglu_server:0.8.0
-
cpe:2.3:a:snowplow:iglu_server:0.8.1
-
cpe:2.3:a:snowplow:iglu_server:0.8.2
-
cpe:2.3:a:snowplow:iglu_server:0.8.3
-
cpe:2.3:a:snowplow:iglu_server:0.8.4
-
cpe:2.3:a:snowplow:iglu_server:0.8.5
-
cpe:2.3:a:snowplow:iglu_server:0.8.6
-
cpe:2.3:a:snowplow:iglu_server:0.8.7
-
cpe:2.3:a:snowplow:iglu_server:0.9.0
-
cpe:2.3:a:snowplow:iglu_server:0.9.1