Knime Security Vulnerabilities (CVEs)

Track 8 security vulnerabilities affecting Knime products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

5 High

3 Medium

Sort by:

🔔 Get Alerts for Knime

CVE-2025-14262 4.3

This vulnerability in KNIME Business Hub allows authenticated users to save other users' jobs with the original owner's permissions, potentially enabl...

Dec 8, 2025

CVE-2025-11239 4.3

This vulnerability in KNIME Business Hub allows unauthorized team members to view sensitive information within jobs, potentially exposing confidential...

Oct 2, 2025

CVE-2025-11240 7.2

An open redirect vulnerability in KNIME Business Hub allows unauthenticated attackers to craft malicious links that redirect users to attacker-control...

Oct 2, 2025

CVE-2025-3019 7.2

KNIME Business Hub contains cross-site scripting vulnerabilities that allow attackers to execute arbitrary JavaScript in users' browsers when they cli...

Mar 31, 2025

CVE-2025-2402 8.6

KNIME Business Hub uses a hard-coded, non-random password for its MinIO object store, allowing unauthenticated remote attackers with the password to r...

Mar 31, 2025

CVE-2025-2787 8.8

This vulnerability in KNIME Business Hub's ingress-nginx component allows authenticated attackers to potentially execute arbitrary code within the Kub...

Mar 26, 2025

CVE-2024-6598 6.5

This vulnerability allows authenticated attackers with job execution privileges to trigger a denial-of-service condition in KNIME Business Hub. By exe...

Jul 9, 2024

CVE-2021-44726 8.8

CVE-2021-44726 is a DOM-based cross-site scripting (XSS) vulnerability in KNIME Server's old WebPortal login page. It allows attackers to inject malic...

Dec 8, 2021

Why Monitor Knime Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 8+ known vulnerabilities affecting Knime products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Knime packages in under 60 seconds. No agents required - completely agentless scanning that works across Knime deployments.

Free vulnerability database: Access detailed information about every Knime CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

Register free account & add your servers
Run one-time scan or schedule automatic monitoring (every 1-24 hours)
Receive instant alerts when new Knime CVEs affect your systems
Access dashboard with severity breakdown & fix instructions

Start Monitoring Knime CVEs Free