Qlik Sense Enterprise for Windows Vulnerability
Qlik Sense Enterprise for Windows Vulnerability
A recent vulnerability in Qlik Sense Enterprise for Windows has been discovered, potentially putting users at risk of cyber attacks. The issue, which affects versions 3.1.10 and earlier, allows for arbitrary code execution and has been classified as a critical vulnerability.
Affected Version:
Qlik Sense Enterprise for Windows versions 3.1.10 and earlier
Vulnerability Type: Arbitrary code execution
Severity: Critical (CVSS score of 8.8 for RCE (via Connector) and 7.5 for Broken Access Control )
To remediate:
1. Update to the latest version: Qlik has released a patch to address the vulnerability. Update to version 3.1.11 or later to ensure you have the latest security fixes.
2. Implement additional security measures: To reduce the risk of a successful attack further, consider implementing additional security measures, such as network segmentation and access controls.
Qlik Sense is a business intelligence and analytics platform that enables users to create interactive, data-driven visualizations and reports. It is designed to help organizations make data-driven decisions by providing a user-friendly interface for exploring and analyzing large datasets.
https://cybersecuritynews.com/qlik-sense-enterprise-for-windows-vulnerability/