CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Artemis before version 2.52.0 is affected by an authentication bypass flaw which allows reading all messages exchanged via the broker and injection of ne...

9.8CVSS5.9AI score0.00156EPSS

Exploits1References2

RedhatCVE•added 2026/03/24 11:54 a.m.•1 views

CVE-2026-4649

A flaw was found in Apache Artemis and KNIME Business Hub. A user with normal privileges and the ability to execute workflows in an executor can exploit an authentication bypass vulnerability. This allows the user to install and register a federated mirror without authentication to the original...

6.1CVSS5.7AI score0.00085EPSS

Exploits0References4

EUVD•added 2026/03/24 9:30 a.m.•3 views

EUVD-2026-14786

Apache Artemis before version 2.52.0 is affected by an authentication bypass flaw which allows reading all messages exchanged via the broker and injection of new message CVE-2026-27446 https://www.cve.org/CVERecord . Since KNIME Business Hub uses Apache Artemis it is also affected by the issue...

9.8CVSS5.9AI score0.00156EPSS

Exploits1References2

NVD•added 2026/03/24 9:16 a.m.•3 views

CVE-2026-4649

5.3CVSS0.00085EPSS

Exploits0References1

UbuntuCve•added 2026/03/24 9:16 a.m.•3 views

CVE-2026-4649

5.3CVSS5.9AI score0.00085EPSS

Exploits0References2

OSV•added 2026/03/24 9:16 a.m.•2 views

UBUNTU-CVE-2026-4649

5.3CVSS5.9AI score0.00085EPSS

Exploits0References3

Vulnrichment•added 2026/03/24 8:15 a.m.•2 views

CVE-2026-4649 Auth bypass in Apache Artemis allows reading all internal messages

5.3CVSS5.9AI score0.00085EPSS

Exploits0References1

ATTACKERKB•added 2026/03/24 8:15 a.m.•6 views

CVE-2026-4649

9.8CVSS5.9AI score0.00156EPSS

Exploits1References2Affected Software1

Cvelist•added 2026/03/24 8:15 a.m.•20 views

CVE-2026-4649 Auth bypass in Apache Artemis allows reading all internal messages

5.3CVSS0.00085EPSS

Exploits0References1

CVE•added 2026/03/24 8:15 a.m.•7 views

CVE-2026-4649

Summary: CVE-2026-4649 describes an authentication bypass in Apache Artemis prior to 2.52.0, enabling reading all messages and injecting new messages. KNIME Business Hub uses Artemis, so it is affected, though Artemis is not exposed publicly; an attacker would need at least normal user privileges...

5.3CVSS5.9AI score0.00085EPSS

Exploits0References1

Positive Technologies•added 2026/03/24 12:0 a.m.•3 views

PT-2026-27354

9.8CVSS5.9AI score0.00156EPSS

Exploits1References2

CNNVD•added 2026/03/24 12:0 a.m.•2 views

KNIME Business Hub 安全漏洞

KNIME Business Hub is a corporate software developed by KNIME GmbH, designed for automation in data science, model deployment, team collaboration, and workflow management. There is a security vulnerability in KNIME Business Hub, which stems from an authentication bypass mechanism. This...

5.3CVSS5.8AI score0.00085EPSS

Exploits0References2

RedhatCVE•added 2025/12/10 6:13 p.m.•2 views

CVE-2025-14262

A wrong permission check in KNIME Business Hub before version 1.17.0 allowed an authenticated user to save jobs of other users as if there were saved by the job owner. The attacker must have permissions to access the jobs but then they were saved into the catalog service using the wrong owner...

5.3CVSS6.7AI score0.00035EPSS

Exploits0References1

OSV•added 2025/12/08 10:16 a.m.•1 views

CVE-2025-14262

4.3CVSS5.8AI score0.00037EPSS

Exploits0References1

NVD•added 2025/12/08 10:16 a.m.•5 views

CVE-2025-14262

5.3CVSS0.00035EPSS

Exploits0References1

EUVD•added 2025/12/08 9:34 a.m.•3 views

EUVD-2025-201697