CVE-2025-11239

Published: Oct 2, 2025

Modified: Oct 2, 2025

PUBLISHED

Description

Potentially sensitive information in jobs on KNIME Business Hub prior to 1.16.0 were visible to all members of the user's team. Starting with KNIME Business Hub 1.16.0 only metadata of jobs is shown to team members. Only the creator of a job can see all information including in- and output data (if present).

Vendor	Product	Versions
KNIME	KNIME Business Hub	affected `0 - < 1.16.0` unaffected `1.16.0`

Weaknesses (CWE)

CWE-863

References

https://www.knime.com/security/advisories

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-11239

Description

Affected Products

Weaknesses (CWE)

References