What is CVE-2023-2541?

CVE-2023-2541 is a medium-severity vulnerability in Knime Business Hub, classified under Exposure of Sensitive System Information to an Unauthorized Control Sphere. CVSS score: 5.3/10. Published 2023-06-07.

How severe is CVE-2023-2541?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Vulnerability in Knime Business Hub

CVE-2023-2541

The Web Frontend of KNIME Business Hub before 1.4.0 allows an unauthenticated remote attacker to access internals about the application such as versions, host names, or IP addresses. No personal information or application data was exposed.

EPSS: 0.005 (66.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N.

Affected products

Knime Business Hub — versions 1.0.0

Weakness classification (CWE)

CWE-497 — Exposure of Sensitive System Information to an Unauthorized Control Sphere

References

Frequently asked questions

What is CVE-2023-2541?: CVE-2023-2541 is a medium-severity vulnerability in Knime Business Hub, classified under Exposure of Sensitive System Information to an Unauthorized Control Sphere. CVSS score: 5.3/10. Published 2023-06-07.
How severe is CVE-2023-2541?: Medium severity. CVSS v3 base score is 5.3 out of 10.