Lucene search
KnimeKnime Server
2 matches found
CVE-2022-44748
A directory traversal vulnerability in the ZIP archive extraction routines of KNIME Server since 4.3.0 can result in arbitrary files being overwritten on the server's file system. This vulnerability is also known as 'Zip-Slip'. An attacker can create a KNIME workflow that, when being uploaded, can ...
7.5CVSS7.6AI score0.02342EPSS
CVE-2021-44725
KNIME Server before 4.13.4 allows directory traversal in a request for a client profile.
7.5CVSS7.5AI score0.00256EPSS