Knime 漏洞

时间轴

类型

Not Defined9

产品

KNIME Analytics Platform4
KNIME Business Hub3
KNIME Server2

修正

Official Fix8
Temporary Fix0
Workaround0
Unavailable0
Not Defined1

易受攻击性

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined9

访问向量

Not Defined0
Physical0
Local0
Adjacent1
Network8

身份验证

Not Defined0
High0
Low3
None6

用户交互

Not Defined0
Required3
None6

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤53
≤63
≤73
≤80
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤53
≤64
≤72
≤80
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤54
≤61
≤73
≤81
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤51
≤61
≤71
≤80
≤90
≤100

CNA

≤10
≤20
≤31
≤40
≤52
≤62
≤71
≤81
≤90
≤100

供应商

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

零日攻击

<1k0
<2k7
<5k2
<10k0
<25k0
<50k0
<100k0
≥100k0

本日攻击

<1k8
<2k1
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

攻击市场容量

🔴 CTI 活动

Affected Products (3): Analytics Platform (4), Business Hub (3), Server (2)

已发布BaseTemp漏洞Prod修正EPSSCTICVE
2023-10-135.25.1KNIME Analytics Platform 跨网站脚本未知Not DefinedOfficial Fix0.000460.02CVE-2023-5562
2023-06-074.34.2KNIME Business Hub HTTP Header 权限升级未知Not DefinedOfficial Fix0.000470.00CVE-2023-3140
2023-06-075.35.2KNIME Business Hub Web Frontend 信息公开未知Not DefinedOfficial Fix0.001040.00CVE-2023-2541
2023-05-054.34.1KNIME Business Hub URL 信息公开未知Not DefinedOfficial Fix0.000440.00CVE-2023-2535
2022-11-246.36.3KNIME Analytics Platform ZIP Archive Extraction 目录遍历未知Not DefinedNot Defined0.002040.05CVE-2022-44749
2022-11-246.76.5KNIME Server ZIP Archive Extraction 目录遍历未知Not DefinedOfficial Fix0.002360.02CVE-2022-44748
2022-06-036.36.0KNIME Analytics Platform Windows Installer 权限升级未知Not DefinedOfficial Fix0.000440.00CVE-2022-31500
2021-12-164.24.2KNIME Server 权限升级未知Not DefinedOfficial Fix0.000420.00CVE-2021-45097
2021-12-165.45.3KNIME Analytics Platform knwf File XML External Entity未知Not DefinedOfficial Fix0.000980.01CVE-2021-45096

上一步一览下一步

Want to stay up to date on a daily basis?

Enable the mail alert feature now!