RSS   Podatności dla 'Knime server'   RSS

2021-12-16
 
CVE-2021-45097

CWE-668
 

 
KNIME Server before 4.12.6 and 4.13.x before 4.13.4 (when installed in unattended mode) keeps the administrator's password in a file without appropriate file access controls, allowing all local users to read its content.

 
2021-12-08
 
CVE-2021-44725

CWE-22
 

 
KNIME Server before 4.13.4 allows directory traversal in a request for a client profile.

 
 
CVE-2021-44726

CWE-79
 

 
KNIME Server before 4.13.4 allows XSS via the old WebPortal login page.

 

 >>> Vendor: Knime 3 Produkty
Analytics platform
Knime server
Knime analytics platform


Copyright 2024, cxsecurity.com

 

Back to Top