CVE-2024-47213
HIGHDescription
An issue was discovered affecting Enrich 5.1.0 and below. It involves sending a maliciously crafted Snowplow event to the pipeline. Upon receiving this event and trying to validate it, Enrich crashes and attempts to restart indefinitely. As a result, event processing would be halted.
Is your site exposed to CVE-2024-47213?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| snowplow | enrich |
References
Frequently Asked Questions
What is CVE-2024-47213? +
How severe is CVE-2024-47213? +
What products are affected by CVE-2024-47213? +
How do I check if I'm vulnerable to CVE-2024-47213? +
Related Vulnerabilities
Vulnerability in SK Hynix DDR5 on x86 allows a local attacker to trigger Rowhammer bit flips impacting the Hardware Integrity …
Idira Endpoint Privilege Manager Linux Agent versions prior to 26.5 allow a local attacker to potentially compromise the agent daemon …
A denial of service security issue exists in the affected product. The security issue stems from a fault occurring when …
SeaCMS 12.9 has a file deletion vulnerability via admin_template.php.
A vulnerability classified as critical was found in RT-Thread 5.1.0. This vulnerability affects the function csys_sendto of the file rt-thread/components/lwp/lwp_syscall.c. …
In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: fix WARN in __netif_napi_del_locked on disconnect Remove …