3 matches found
CVE-2025-2402
A hard-coded, non-random password for the object store minio of KNIME Business Hub in all versions except the ones listed below allows an unauthenticated remote attacker in possession of the password to read and manipulate swapped jobs or read and manipulate in- and output data of active jobs. It...
CVE-2025-2402
creationtimestamp| type| source ---|---|--- 2025-03-31 06:30:59+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9593 2025-03-31 06:59:08+00:00| seen| https://bsky.app/profile/potato.software/post/3llnruhrno32t 2025-03-31 10:49:40+00:00| seen| https://t.me/cvedetector/21565 2026-03-25...
CVE-2025-2402
CVE-2025-2402 affects KNIME Business Hub. A hard-coded, non-random password for the object store (MinIO) in all versions except the listed fixes enables an unauthenticated attacker to read/manipulate swapped jobs or in/out data of active jobs, and can cause a denial-of-service by writing large da...