Knime
Products
4- 10 CVEs
- 4 CVEs
- 4 CVEs
- 2 CVEs
Recent CVEs
18| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-44726 | Hig | 0.57 | 8.8 | 0.01 | Dec 8, 2021 | KNIME Server before 4.13.4 allows XSS via the old WebPortal login page. | ||
| CVE-2022-31500 | Hig | 0.51 | 7.8 | 0.00 | Jun 2, 2022 | In KNIME Analytics Platform below 4.6.0, the Windows installer sets improper filesystem permissions. | ||
| CVE-2021-44725 | Hig | 0.49 | 7.5 | 0.02 | Dec 8, 2021 | KNIME Server before 4.13.4 allows directory traversal in a request for a client profile. | ||
| CVE-2022-44748 | Hig | 0.46 | 7.1 | 0.01 | Nov 24, 2022 | A directory traversal vulnerability in the ZIP archive extraction routines of KNIME Server since 4.3.0 can result in arbitrary files being overwritten on the server's file system. This vulnerability is also known as 'Zip-Slip'. An attacker can create a KNIME workflow that,… | ||
| CVE-2023-5562 | Med | 0.40 | 6.1 | 0.00 | Oct 12, 2023 | An unsafe default configuration in KNIME Analytics Platform before 5.2.0 allows for a cross-site scripting attack. When KNIME Analytics Platform is used as an executor for either KNIME Server or KNIME Business Hub several JavaScript-based view nodes do not sanitize the data that… | ||
| CVE-2022-44749 | Med | 0.36 | 5.5 | 0.00 | Nov 24, 2022 | A directory traversal vulnerability in the ZIP archive extraction routines of KNIME Analytics Platform 3.2.0 and above can result in arbitrary files being overwritten on the user's system. This vulnerability is also known as 'Zip-Slip'. An attacker can create a KNIME… | ||
| CVE-2023-2541 | Med | 0.35 | 5.3 | 0.01 | Jun 7, 2023 | The Web Frontend of KNIME Business Hub before 1.4.0 allows an unauthenticated remote attacker to access internals about the application such as versions, host names, or IP addresses. No personal information or application data was exposed. | ||
| CVE-2021-45096 | Med | 0.31 | 4.7 | 0.01 | Dec 16, 2021 | KNIME Analytics Platform before 4.5.0 is vulnerable to XXE (external XML entity injection) via a crafted workflow file (.knwf), aka AP-17730. | ||
| CVE-2023-3140 | Med | 0.28 | 4.3 | 0.00 | Jun 7, 2023 | Missing HTTP headers (X-Frame-Options, Content-Security-Policy) in KNIME Business Hub before 1.4.0 has left users vulnerable to click jacking. Clickjacking is an attack that occurs when an attacker uses a transparent iframe in a window to trick a user into clicking on an … | ||
| CVE-2021-45097 | Low | 0.19 | 2.9 | 0.00 | Dec 16, 2021 | KNIME Server before 4.12.6 and 4.13.x before 4.13.4 (when installed in unattended mode) keeps the administrator's password in a file without appropriate file access controls, allowing all local users to read its content. | ||
| CVE-2026-4649 | 0.00 | — | 0.00 | Mar 24, 2026 | Apache Artemis before version 2.52.0 is affected by an authentication bypass flaw which allows reading all messages exchanged via the broker and injection of new message ( CVE-2026-27446 https://www.cve.org/CVERecord ). Since KNIME Business Hub uses Apache Artemis it is also… | |||
| CVE-2025-14262 | 0.00 | — | 0.00 | Dec 8, 2025 | A wrong permission check in KNIME Business Hub before version 1.17.0 allowed an authenticated user to save jobs of other users as if there were saved by the job owner. The attacker must have permissions to access the jobs but then they were saved into the catalog service using… | |||
| CVE-2025-11240 | 0.00 | — | 0.00 | Oct 2, 2025 | An open redirect vulnerability existed in KNIME Business Hub prior to version 1.16.0. An unauthenticated remote attacker could craft a link to a legitimate KNIME Business Hub installation which, when opened by the user, redirects the user to a page of the attackers choice. This… | |||
| CVE-2025-11239 | 0.00 | — | 0.00 | Oct 2, 2025 | Potentially sensitive information in jobs on KNIME Business Hub prior to 1.16.0 were visible to all members of the user's team. Starting with KNIME Business Hub 1.16.0 only metadata of jobs is shown to team members. Only the creator of a job can see all information including in-… | |||
| CVE-2025-3019 | 0.00 | — | 0.00 | Mar 31, 2025 | KNIME Business Hub is affected by several cross-site scripting vulnerabilities in its web pages. If a user clicks on a malicious link or opens a malicious web page, arbitrary Java Script may be executed with this user's permissions. This can lead to information loss and/or… | |||
| CVE-2025-2402 | 0.00 | — | 0.00 | Mar 31, 2025 | A hard-coded, non-random password for the object store (minio) of KNIME Business Hub in all versions except the ones listed below allows an unauthenticated remote attacker in possession of the password to read and manipulate swapped jobs or read and manipulate in- and output… | |||
| CVE-2025-2787 | 0.00 | — | 0.00 | Mar 26, 2025 | KNIME Business Hub is affected by the Ingress-nginx CVE-2025-1974 ( a.k.a IngressNightmare ) vulnerability which affects the ingress-nginx component. In the worst case a complete takeover of the Kubernetes cluster is possible. Since the affected component is only reachable from… | |||
| CVE-2024-6598 | 0.00 | — | 0.01 | Jul 9, 2024 | A denial-of-service attack is possible through the execution functionality of KNIME Business Hub 1.10.0 and 1.10.1. It allows an authenticated attacker with job execution privileges to execute a job that causes internal messages to pile up until there are no more resources… |
- risk 0.57cvss 8.8epss 0.01
KNIME Server before 4.13.4 allows XSS via the old WebPortal login page.
- risk 0.51cvss 7.8epss 0.00
In KNIME Analytics Platform below 4.6.0, the Windows installer sets improper filesystem permissions.
- risk 0.49cvss 7.5epss 0.02
KNIME Server before 4.13.4 allows directory traversal in a request for a client profile.
- risk 0.46cvss 7.1epss 0.01
A directory traversal vulnerability in the ZIP archive extraction routines of KNIME Server since 4.3.0 can result in arbitrary files being overwritten on the server's file system. This vulnerability is also known as 'Zip-Slip'. An attacker can create a KNIME workflow that,…
- risk 0.40cvss 6.1epss 0.00
An unsafe default configuration in KNIME Analytics Platform before 5.2.0 allows for a cross-site scripting attack. When KNIME Analytics Platform is used as an executor for either KNIME Server or KNIME Business Hub several JavaScript-based view nodes do not sanitize the data that…
- risk 0.36cvss 5.5epss 0.00
A directory traversal vulnerability in the ZIP archive extraction routines of KNIME Analytics Platform 3.2.0 and above can result in arbitrary files being overwritten on the user's system. This vulnerability is also known as 'Zip-Slip'. An attacker can create a KNIME…
- risk 0.35cvss 5.3epss 0.01
The Web Frontend of KNIME Business Hub before 1.4.0 allows an unauthenticated remote attacker to access internals about the application such as versions, host names, or IP addresses. No personal information or application data was exposed.
- risk 0.31cvss 4.7epss 0.01
KNIME Analytics Platform before 4.5.0 is vulnerable to XXE (external XML entity injection) via a crafted workflow file (.knwf), aka AP-17730.
- risk 0.28cvss 4.3epss 0.00
Missing HTTP headers (X-Frame-Options, Content-Security-Policy) in KNIME Business Hub before 1.4.0 has left users vulnerable to click jacking. Clickjacking is an attack that occurs when an attacker uses a transparent iframe in a window to trick a user into clicking on an …
- risk 0.19cvss 2.9epss 0.00
KNIME Server before 4.12.6 and 4.13.x before 4.13.4 (when installed in unattended mode) keeps the administrator's password in a file without appropriate file access controls, allowing all local users to read its content.
- CVE-2026-4649Mar 24, 2026risk 0.00cvss —epss 0.00
Apache Artemis before version 2.52.0 is affected by an authentication bypass flaw which allows reading all messages exchanged via the broker and injection of new message ( CVE-2026-27446 https://www.cve.org/CVERecord ). Since KNIME Business Hub uses Apache Artemis it is also…
- CVE-2025-14262Dec 8, 2025risk 0.00cvss —epss 0.00
A wrong permission check in KNIME Business Hub before version 1.17.0 allowed an authenticated user to save jobs of other users as if there were saved by the job owner. The attacker must have permissions to access the jobs but then they were saved into the catalog service using…
- CVE-2025-11240Oct 2, 2025risk 0.00cvss —epss 0.00
An open redirect vulnerability existed in KNIME Business Hub prior to version 1.16.0. An unauthenticated remote attacker could craft a link to a legitimate KNIME Business Hub installation which, when opened by the user, redirects the user to a page of the attackers choice. This…
- CVE-2025-11239Oct 2, 2025risk 0.00cvss —epss 0.00
Potentially sensitive information in jobs on KNIME Business Hub prior to 1.16.0 were visible to all members of the user's team. Starting with KNIME Business Hub 1.16.0 only metadata of jobs is shown to team members. Only the creator of a job can see all information including in-…
- CVE-2025-3019Mar 31, 2025risk 0.00cvss —epss 0.00
KNIME Business Hub is affected by several cross-site scripting vulnerabilities in its web pages. If a user clicks on a malicious link or opens a malicious web page, arbitrary Java Script may be executed with this user's permissions. This can lead to information loss and/or…
- CVE-2025-2402Mar 31, 2025risk 0.00cvss —epss 0.00
A hard-coded, non-random password for the object store (minio) of KNIME Business Hub in all versions except the ones listed below allows an unauthenticated remote attacker in possession of the password to read and manipulate swapped jobs or read and manipulate in- and output…
- CVE-2025-2787Mar 26, 2025risk 0.00cvss —epss 0.00
KNIME Business Hub is affected by the Ingress-nginx CVE-2025-1974 ( a.k.a IngressNightmare ) vulnerability which affects the ingress-nginx component. In the worst case a complete takeover of the Kubernetes cluster is possible. Since the affected component is only reachable from…
- CVE-2024-6598Jul 9, 2024risk 0.00cvss —epss 0.01
A denial-of-service attack is possible through the execution functionality of KNIME Business Hub 1.10.0 and 1.10.1. It allows an authenticated attacker with job execution privileges to execute a job that causes internal messages to pile up until there are no more resources…