A directory traversal vulnerability in KNIME Server ZIP archive extraction can result in arbitrary files being overwritten. This can lead to data integrity impact, errors in other software, and potential remote code execution
Reporter | Title | Published | Views | Family All 4 |
---|---|---|---|---|
![]() | CVE-2022-44748 Uploading workflows to KNIME Server may override arbitrary file system contents | 24 Nov 202206:36 | – | vulnrichment |
![]() | CVE-2022-44748 Uploading workflows to KNIME Server may override arbitrary file system contents | 24 Nov 202206:36 | – | cvelist |
![]() | CVE-2022-44748 | 24 Nov 202207:15 | – | nvd |
![]() | Directory traversal | 24 Nov 202207:15 | – | prion |
[
{
"defaultStatus": "unaffected",
"product": "KNIME Server",
"vendor": "KNIME",
"versions": [
{
"lessThan": "4.15.3",
"status": "affected",
"version": "4.15.0",
"versionType": "semver"
},
{
"lessThan": "4.14.3",
"status": "affected",
"version": "4.14.0",
"versionType": "semver"
},
{
"lessThan": "4.13.6",
"status": "affected",
"version": "4.3.0",
"versionType": "semver"
}
]
}
]
Source | Link |
---|---|
knime | www.knime.com/security/advisories |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo