Latest Qlik Vulnerabilities

CVE-2023-48365
Qlik Sense Enterprise for Windows before August 2023 Patch 2 allows unauthenticated remote code execution, aka QB-21683. Due to improper validation of HTTP headers, a remote attacker is able to elevat...
Qlik Qlik Sense=august_2022
Qlik Qlik Sense=august_2022-patch_1
Qlik Qlik Sense=august_2022-patch_10
Qlik Qlik Sense=august_2022-patch_11
Qlik Qlik Sense=august_2022-patch_12
Qlik Qlik Sense=august_2022-patch_13
and 86 more
CVE-2023-41265
Qlik Sense HTTP Tunneling Vulnerability
Qlik Qlik Sense=august_2022
Qlik Qlik Sense=august_2022-patch_1
Qlik Qlik Sense=august_2022-patch_10
Qlik Qlik Sense=august_2022-patch_11
Qlik Qlik Sense=august_2022-patch_12
Qlik Qlik Sense=august_2022-patch_2
and 31 more
CVE-2023-41266
Qlik Sense Path Traversal Vulnerability
Qlik Qlik Sense=august_2022
Qlik Qlik Sense=august_2022-patch_1
Qlik Qlik Sense=august_2022-patch_10
Qlik Qlik Sense=august_2022-patch_11
Qlik Qlik Sense=august_2022-patch_12
Qlik Qlik Sense=august_2022-patch_2
and 31 more
CVE-2022-42248
QlikView 12.60.2 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the QvsViewClient functionality.
Qlik QlikView<=12.60
CVE-2021-41989
Qlik QlikView through 12.60.20100.0 creates a Temporary File in a Directory with Insecure Permissions.
Qlik QlikView<=12.60.20100.0
CVE-2021-41988
Qlik NPrinting Designer through 21.14.3.0 creates a Temporary File in a Directory with Insecure Permissions.
Qlik NPrinting Designer<=21.14.3.0
CVE-2021-36761
The GeoAnalytics feature in Qlik Sense April 2020 patch 4 allows SSRF.
Qlik Qlik Sense=april_2020-patch4
CVE-2022-0564
Qlik Sense Enterprise Domain User enumeration
>=14.0<14.44.0
Qlik Qlik Sense>=14.0<14.44.0
Microsoft Windows
CVE-2019-11628
An issue was discovered in QlikView Server before 11.20 SR19, 12.00 and 12.10 before 12.10 SR11, 12.20 before SR9, and 12.30 before SR2; and Qlik Sense Enterprise and Qlik Analytics Platform installat...
Qlik Qlikview Server=11.20-service_release_1
Qlik Qlikview Server=11.20-service_release_10
Qlik Qlikview Server=11.20-service_release_11
Qlik Qlikview Server=11.20-service_release_12
Qlik Qlikview Server=11.20-service_release_13
Qlik Qlikview Server=11.20-service_release_14
and 44 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203