Vulnerabilities > Knime > High

DATE CVE VULNERABILITY TITLE RISK
2022-11-24 CVE-2022-44748 Path Traversal vulnerability in Knime Server 4.12.5/4.13.3/4.13.4
A directory traversal vulnerability in the ZIP archive extraction routines of KNIME Server since 4.3.0 can result in arbitrary files being overwritten on the server's file system.
network
high complexity
knime CWE-22
7.5
7.5
2022-11-24 CVE-2022-44749 Path Traversal vulnerability in Knime Analytics Platform
A directory traversal vulnerability in the ZIP archive extraction routines of KNIME Analytics Platform 3.2.0 and above can result in arbitrary files being overwritten on the user's system.
local
high complexity
knime CWE-22
7.0
7.0
2022-06-02 CVE-2022-31500 Incorrect Default Permissions vulnerability in Knime Analytics Platform
In KNIME Analytics Platform below 4.6.0, the Windows installer sets improper filesystem permissions.
local
low complexity
knime CWE-276
7.8
7.8
2021-12-08 CVE-2021-44725 Path Traversal vulnerability in Knime Server 4.12.5/4.13.3
KNIME Server before 4.13.4 allows directory traversal in a request for a client profile.
network
low complexity
knime CWE-22
7.5
7.5