CVE-2024-47217 Information

Description

An issue was discovered in Iglu Server 0.13.0 and below. It is similar to CVE-2024-47214 but involves an authenticated endpoint. It can render Iglu Server completely unresponsive. If the operation of Iglu Server is not restored event processing in the pipeline would eventually halt.

Reference

https://support.snowplow.io/hc/en-us/articles/26318139354909-Update-Critical-Snowplow-Security-Updates-Impact-on-Open-Source-Software-Users