Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
knime knime analytics platform vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-5562
An unsafe default configuration in KNIME Analytics Platform prior to 5.2.0 allows for a cross-site scripting attack. When KNIME Analytics Platform is used as an executor for either KNIME Server or KNIME Business Hub several JavaScript-based view nodes do not sanitize the data tha...
Knime Knime Analytics Platform
NA
CVE-2022-44749
A directory traversal vulnerability in the ZIP archive extraction routines of KNIME Analytics Platform 3.2.0 and above can result in arbitrary files being overwritten on the user's system. This vulnerability is also known as 'Zip-Slip'. An attacker can create a KNI...
Knime Knime Analytics Platform
4.6
CVSSv2
CVE-2022-31500
In KNIME Analytics Platform below 4.6.0, the Windows installer sets improper filesystem permissions.
Knime Knime Analytics Platform
4.3
CVSSv2
CVE-2021-45096
KNIME Analytics Platform prior to 4.5.0 is vulnerable to XXE (external XML entity injection) via a crafted workflow file (.knwf), aka AP-17730.
Knime Knime Analytics Platform
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started