Vulnerabilities in KNIME

13 results

CVE-2022-44748HIGHUploading workflows to KNIME Server may override arbitrary file system contentsEPSS 1.3%CVE-2023-2541MEDIUMSensitive information disclosure in KNIME Hub Web ApplicationEPSS 0.6%CVE-2024-6598HIGHDenial-of-service on KNIME Business Hub when certain jobs are executedEPSS 0.5%CVE-2025-2787HIGHIngress-nginx vulnerability in KNIME Business HubEPSS 0.5%CVE-2022-44749MEDIUMOpening workflows from untrusted resources may override arbitrary file system contentsEPSS 0.4%CVE-2023-3140MEDIUMKNIME Hub Web Application is vulnerable to clickjackingEPSS 0.4%CVE-2025-2402HIGHHard-coded password for object store of KNIME Business HubEPSS 0.4%CVE-2026-4649MEDIUMAuth bypass in Apache Artemis allows reading all internal messagesEPSS 0.3%CVE-2023-5562MEDIUMUnsafe default allows for cross-site scripting attacks in KNIME Server and KNIME Business HubEPSS 0.3%CVE-2025-3019MEDIUMCross-site scripting vulnerabilities in KNIME Business Hub web pagesEPSS 0.3%CVE-2025-11240MEDIUMOpen redirect vulnerability in KNIME Business HubEPSS 0.2%CVE-2025-11239LOWJob details are visible to all team members on KNIME Business HubEPSS 0.2%CVE-2025-14262MEDIUMJobs can be saved as workflows with wrong permissions on KNIME Business HubEPSS 0.2%