Unrated severityNVD Advisory· Published Oct 2, 2025· Updated Oct 2, 2025

Open redirect vulnerability in KNIME Business Hub

CVE-2025-11240

Description

An open redirect vulnerability existed in KNIME Business Hub prior to version 1.16.0. An unauthenticated remote attacker could craft a link to a legitimate KNIME Business Hub installation which, when opened by the user, redirects the user to a page of the attackers choice. This might open the possibility for fishing or other similar attacks. The problem has been fixed in KNIME Business Hub 1.16.0.

Affected products

Knime/Business Hubllm-fuzzy
Range: <1.16.0
KNIME/KNIME Business Hubv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.knime.com/security/advisoriesmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000