CVE-2022-44748 | KNIME Server up to 4.13.5/4.14.2/4.15.2 ZIP Archive Extraction path traversal

A vulnerability classified as critical has been found in KNIME Server up to 4.13.5/4.14.2/4.15.2. Affected is an unknown function of the component ZIP Archive Extraction Handler. The manipulation leads to path traversal.

This vulnerability is traded as CVE-2022-44748. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More