CVE-2025-11240— Open redirect vulnerability in KNIME Business Hub

EPSS 0.04% · P13 Updated Oct 03, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-11240

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Open redirect vulnerability in KNIME Business Hub

Source: NVD (National Vulnerability Database)

Vulnerability Description

An open redirect vulnerability existed in KNIME Business Hub prior to version 1.16.0. An unauthenticated remote attacker could craft a link to a legitimate KNIME Business Hub installation which, when opened by the user, redirects the user to a page of the attackers choice. This might open the possibility for fishing or other similar attacks. The problem has been fixed in KNIME Business Hub 1.16.0.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

指向未可信站点的URL重定向(开放重定向)

Source: NVD (National Vulnerability Database)

Vulnerability Title

KNIME Business Hub 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

KNIME Business Hub是KNIME公司的用于数据科学自动化、部署模型、团队协作和管理工作流的企业软件。 KNIME Business Hub 1.16.0之前版本存在安全漏洞，该漏洞源于未经验证的远程攻击者可制作特制链接，可能导致钓鱼攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
KNIME	KNIME Business Hub	0 ~ 1.16.0	-

II. Public POCs for CVE-2025-11240

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2025-11240

请登录查看更多情报信息。

IV. Related Vulnerabilities

Same product: KNIME Business Hub

Same vendor: KNIME

Same weakness: CWE-601

V. Comments for CVE-2025-11240

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2025-11240— Open redirect vulnerability in KNIME Business Hub

I. Basic Information for CVE-2025-11240

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2025-11240

III. Intelligence Information for CVE-2025-11240

IV. Related Vulnerabilities

V. Comments for CVE-2025-11240

Leave a comment