The Web Frontend of KNIME Business Hub before 1.4.0 allows an unauthenticated remote attacker to access internals about the application such as versions, host names, or IP addresses. No personal information or application data was exposed.
References
| Link | Resource |
|---|---|
| https://www.knime.com/security/advisories#CVE-2023-2541 | Vendor Advisory |
| https://zigrin.com/advisories/knime-business-hub-sensitive-information-disclosure/ | Third Party Advisory |
Configurations
History
04 Sep 2024, 07:15
| Type | Values Removed | Values Added |
|---|---|---|
| Summary | (en) The Web Frontend of KNIME Business Hub before 1.4.0 allows an unauthenticated remote attacker to access internals about the application such as versions, host names, or IP addresses. No personal information or application data was exposed. | |
| CWE | CWE-497 |
09 Jan 2024, 03:05
| Type | Values Removed | Values Added |
|---|---|---|
| References | (MISC) https://zigrin.com/advisories/knime-business-hub-sensitive-information-disclosure/ - Third Party Advisory |
30 Oct 2023, 22:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
14 Jun 2023, 14:51
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | NVD-CWE-noinfo | |
| References | (MISC) https://www.knime.com/security/advisories#CVE-2023-2541 - Vendor Advisory | |
| First Time |
Knime business Hub
Knime |
|
| CPE | cpe:2.3:a:knime:business_hub:*:*:*:*:*:*:*:* | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.3 |
07 Jun 2023, 12:52
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-06-07 09:15
Updated : 2024-09-04 07:15
NVD link : CVE-2023-2541
Mitre link : CVE-2023-2541
CVE.ORG link : CVE-2023-2541
JSON object : View
Products Affected
knime
- business_hub
CWE