What is CVE-2025-2787?

CVE-2025-2787 is a vulnerability in Knime Business Hub. Published 2025-03-26.

Is CVE-2025-2787 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Knime Business Hub

CVE-2025-2787

KNIME Business Hub is affected by the Ingress-nginx CVE-2025-1974 ( a.k.a IngressNightmare ) vulnerability which affects the ingress-nginx component. In the worst case a complete takeover of the Kubernetes cluster is possible. Since the af…

EPSS: 0.005 (66.8th percentile) — read the EPSS interpretation.

Affected products

Knime Business Hub — versions 1.13.0, 1.12.0, 1.11.0

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

www.knime.com/security-advisory-cve-2025-2787

Frequently asked questions

What is CVE-2025-2787?: CVE-2025-2787 is a vulnerability in Knime Business Hub. Published 2025-03-26.
Is CVE-2025-2787 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.