Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
knime knime analytics platform vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2022-31500
In KNIME Analytics Platform below 4.6.0, the Windows installer sets improper filesystem permissions.
Knime Knime Analytics Platform
7
CVSSv3
CVE-2022-44749
A directory traversal vulnerability in the ZIP archive extraction routines of KNIME Analytics Platform 3.2.0 and above can result in arbitrary files being overwritten on the user's system. This vulnerability is also known as 'Zip-Slip'. An attacker can create a KNI...
Knime Knime Analytics Platform
6.1
CVSSv3
CVE-2023-5562
An unsafe default configuration in KNIME Analytics Platform prior to 5.2.0 allows for a cross-site scripting attack. When KNIME Analytics Platform is used as an executor for either KNIME Server or KNIME Business Hub several JavaScript-based view nodes do not sanitize the data tha...
Knime Knime Analytics Platform
4.3
CVSSv3
CVE-2021-45096
KNIME Analytics Platform prior to 4.5.0 is vulnerable to XXE (external XML entity injection) via a crafted workflow file (.knwf), aka AP-17730.
Knime Knime Analytics Platform
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started