https://community.qlik.com/t5/Management-Governance/Is-Qlik-Sense-vulnerable-to-the-Log4Shell-exploit/m-p/1869323#M30073 <P>Looks like centralized logging relies on Log4j.</P> Wed, 29 Jan 2025 16:57:53 GMT kswindlehurst 2025-01-29T16:57:53Z https://community.qlik.com/t5/Management-Governance/Is-Qlik-Sense-vulnerable-to-the-Log4Shell-exploit/m-p/1869323#M30073 <P>Looks like centralized logging relies on Log4j.</P> Wed, 29 Jan 2025 16:57:53 GMT https://community.qlik.com/t5/Management-Governance/Is-Qlik-Sense-vulnerable-to-the-Log4Shell-exploit/m-p/1869323#M30073 kswindlehurst 2025-01-29T16:57:53Z https://community.qlik.com/t5/Management-Governance/Is-Qlik-Sense-vulnerable-to-the-Log4Shell-exploit/m-p/1869363#M30074 <P><SPAN>Hello,</SPAN></P> <P><SPAN>Qlik is aware of the&nbsp;recently&nbsp;published security vulnerability&nbsp;in&nbsp;Apache Log4j, reference&nbsp;CVE-2021-44228&nbsp;(also referred to as&nbsp;<I>Log4Shell</I>)<I>.</I>&nbsp;As soon as the vulnerability was published, Qlik immediately began a security investigation to determine if and how Qlik’s products and services are impacted.&nbsp;</SPAN></P> <P><SPAN>Our preliminary investigations have confirmed that&nbsp;</SPAN><SPAN>Client-managed&nbsp;Qlik Sense Enterprise,&nbsp;QlikView,&nbsp;Nprinting&nbsp;are confirmed as not including the vulnerable component. Other Qlik products are still under evaluation and patches will be made available as necessary.</SPAN></P> <P><SPAN>Thank you,<BR />Patrick<BR />Director, CSO Experience Programs<BR />Qlik</SPAN></P> Sat, 11 Dec 2021 14:57:14 GMT https://community.qlik.com/t5/Management-Governance/Is-Qlik-Sense-vulnerable-to-the-Log4Shell-exploit/m-p/1869363#M30074 PatrickQ 2021-12-11T14:57:14Z https://community.qlik.com/t5/Management-Governance/Is-Qlik-Sense-vulnerable-to-the-Log4Shell-exploit/m-p/1869392#M30075 <P>Ongoing updates will be posted to here:<BR /><A href="https://community.qlik.com/t5/Support-Updates-Blog/Vulnerability-Testing-Apache-Log4j-reference-CVE-2021-44228-also/bc-p/1869391#M1993" target="_blank">Vulnerability Testing - &nbsp;Apache Log4j, reference&nbsp;C... - Qlik Community - 1869368</A></P> Sat, 11 Dec 2021 17:13:39 GMT https://community.qlik.com/t5/Management-Governance/Is-Qlik-Sense-vulnerable-to-the-Log4Shell-exploit/m-p/1869392#M30075 PatrickQ 2021-12-11T17:13:39Z