Browse all 8 CVE security advisories affecting KnowageLabs. AI-powered Chinese analysis, POCs, and references for each vulnerability.
KnowageLabs develops business intelligence and analytics platforms primarily used for data visualization and reporting. Historically, their products have been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, with eight CVEs currently documented. The platform's complex architecture and extensive customization options have contributed to recurring security gaps. While no major public incidents have been widely reported, the consistent pattern of vulnerabilities suggests potential risks for organizations relying on these tools for sensitive data processing. Implementers should prioritize timely patching and harden configurations against common attack vectors targeting BI systems.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-58441 | Knowage is vulnerable to blind server-side request forgery (SSRF) — Knowage-ServerCWE-918 | 5.3 | - | 2026-01-07 |
| CVE-2025-59954 | Knowage Contains a Remote Code Execution Vulnerability — Knowage-ServerCWE-94 | 9.8 | - | 2025-09-29 |
| CVE-2025-55007 | Knowage vulnerable to server-side request forgery — Knowage-ServerCWE-918 | 3.5 | Low | 2025-09-01 |
| CVE-2023-38702 | Knowage Server vulnerable to path traversal via upload functionality — Knowage-ServerCWE-22 | 10.0 | Critical | 2023-08-04 |
| CVE-2023-37472 | Query injection in Knowage server — Knowage-ServerCWE-89 | 7.7 | High | 2023-07-14 |
| CVE-2023-36819 | Knowage-Server vulnerable to Path traversal in download functionalities — Knowage-ServerCWE-22 | 6.5 | Medium | 2023-07-03 |
| CVE-2023-35154 | Knowage-Server vulnerable to account validation bypass — Knowage-ServerCWE-287 | 7.2 | High | 2023-06-23 |
| CVE-2022-39295 | Improper Neutralization of Alternate XSS Syntax in Knowage-Server — Knowage-ServerCWE-87 | 6.1 | Medium | 2022-10-13 |
This page lists every published CVE security advisory associated with KnowageLabs. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.