https://community.qlik.com/t5/Management-Governance/Log4J-vulnerability-check/m-p/1869342#M30076 <P>Hello,</P> <P>At DPG Media we're doing a fulll check of our systems on the Log4J vulnerability.&nbsp;</P> <P><A href="https://www.lunasec.io/docs/blog/log4j-zero-day/" target="_blank" rel="noopener">https://www.lunasec.io/docs/blog/log4j-zero-day/</A></P> <P>We find some references in your documentation to Log4J. Can you please verify that your service is not impacted by this vulnerability?</P> <DIV id="1639227614.002300" class="c-virtual_list__item" tabindex="-1" role="listitem" data-qa="virtual-list-item"> <DIV class="c-message_kit__background c-message_kit__background--hovered p-message_pane_message__message c-message_kit__message" role="presentation" data-qa="message_container" data-qa-unprocessed="false" data-qa-placeholder="false"> <DIV class="c-message_kit__hover c-message_kit__hover--hovered" role="document" aria-roledescription="message" data-qa-hover="true"> <DIV class="c-message_kit__actions c-message_kit__actions--default"> <DIV class="c-message_kit__gutter"> <DIV class="c-message_kit__gutter__right" role="presentation" data-qa="message_content"> <DIV class="c-message_kit__blocks c-message_kit__blocks--rich_text"> <DIV class="c-message__message_blocks c-message__message_blocks--rich_text"> <DIV class="p-block_kit_renderer" data-qa="block-kit-renderer"> <DIV class="p-block_kit_renderer__block_wrapper p-block_kit_renderer__block_wrapper--first"> <DIV class="p-rich_text_block" dir="auto"> <DIV class="p-rich_text_section"><A class="c-link" tabindex="-1" href="https://help.qlik.com/en-US/catalog/November2021/Content/Resources/PDFs/QlikCatalog_November_2021_SingleNode_InstallGuide.pdf#page=21" target="_blank" rel="noopener noreferrer" data-stringify-link="https://help.qlik.com/en-US/catalog/November2021/Content/Resources/PDFs/QlikCatalog_November_2021_SingleNode_InstallGuide.pdf#page=21" data-sk="tooltip_parent" data-remove-tab-index="true" aria-describedby="sk-tooltip-12979">https://help.qlik.com/en-US/catalog/November2021/Content/Resources/PDFs/QlikCatalog_November_2021_SingleNode_InstallGuide.pdf#page=21</A></DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> <DIV class="c-message_actions__container c-message__actions" role="group"> <DIV class="c-message_actions__group" role="group" aria-label="Message shortcuts" data-qa="message-actions">&nbsp;</DIV> </DIV> </DIV> </DIV> </DIV> </DIV> <DIV id="1639227668.002500" class="c-virtual_list__item" tabindex="0" role="listitem" data-qa="virtual-list-item"> <DIV class="c-message_kit__background p-message_pane_message__message c-message_kit__message" role="presentation" data-qa="message_container" data-qa-unprocessed="false" data-qa-placeholder="false"> <DIV class="c-message_kit__hover" role="document" aria-roledescription="message" data-qa-hover="true"> <DIV class="c-message_kit__actions c-message_kit__actions--above"> <DIV class="c-message_kit__gutter"> <DIV class="c-message_kit__gutter__right" role="presentation" data-qa="message_content"> <DIV class="c-message_kit__blocks c-message_kit__blocks--rich_text"> <DIV class="c-message__message_blocks c-message__message_blocks--rich_text"> <DIV class="p-block_kit_renderer" data-qa="block-kit-renderer"> <DIV class="p-block_kit_renderer__block_wrapper p-block_kit_renderer__block_wrapper--first"> <DIV class="p-rich_text_block" dir="auto"> <DIV class="p-rich_text_section"><A class="c-link" tabindex="-1" href="https://help.qlik.com/en-US/search/?q=log4j" target="_blank" rel="noopener noreferrer" data-stringify-link="https://help.qlik.com/en-US/search/?q=log4j" data-sk="tooltip_parent" data-remove-tab-index="true">https://help.qlik.com/en-US/search/?q=log4j</A></DIV> <DIV class="p-rich_text_section">&nbsp;</DIV> <DIV class="p-rich_text_section">Kind regards,</DIV> <DIV class="p-rich_text_section">&nbsp;</DIV> <DIV class="p-rich_text_section">Erik Dolstra</DIV> <DIV class="p-rich_text_section">Product Owner Data Tooling DPG Media</DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> Wed, 29 Jan 2025 16:57:53 GMT ErikDolstraDPGMedia 2025-01-29T16:57:53Z https://community.qlik.com/t5/Management-Governance/Log4J-vulnerability-check/m-p/1869342#M30076 <P>Hello,</P> <P>At DPG Media we're doing a fulll check of our systems on the Log4J vulnerability.&nbsp;</P> <P><A href="https://www.lunasec.io/docs/blog/log4j-zero-day/" target="_blank" rel="noopener">https://www.lunasec.io/docs/blog/log4j-zero-day/</A></P> <P>We find some references in your documentation to Log4J. Can you please verify that your service is not impacted by this vulnerability?</P> <DIV id="1639227614.002300" class="c-virtual_list__item" tabindex="-1" role="listitem" data-qa="virtual-list-item"> <DIV class="c-message_kit__background c-message_kit__background--hovered p-message_pane_message__message c-message_kit__message" role="presentation" data-qa="message_container" data-qa-unprocessed="false" data-qa-placeholder="false"> <DIV class="c-message_kit__hover c-message_kit__hover--hovered" role="document" aria-roledescription="message" data-qa-hover="true"> <DIV class="c-message_kit__actions c-message_kit__actions--default"> <DIV class="c-message_kit__gutter"> <DIV class="c-message_kit__gutter__right" role="presentation" data-qa="message_content"> <DIV class="c-message_kit__blocks c-message_kit__blocks--rich_text"> <DIV class="c-message__message_blocks c-message__message_blocks--rich_text"> <DIV class="p-block_kit_renderer" data-qa="block-kit-renderer"> <DIV class="p-block_kit_renderer__block_wrapper p-block_kit_renderer__block_wrapper--first"> <DIV class="p-rich_text_block" dir="auto"> <DIV class="p-rich_text_section"><A class="c-link" tabindex="-1" href="https://help.qlik.com/en-US/catalog/November2021/Content/Resources/PDFs/QlikCatalog_November_2021_SingleNode_InstallGuide.pdf#page=21" target="_blank" rel="noopener noreferrer" data-stringify-link="https://help.qlik.com/en-US/catalog/November2021/Content/Resources/PDFs/QlikCatalog_November_2021_SingleNode_InstallGuide.pdf#page=21" data-sk="tooltip_parent" data-remove-tab-index="true" aria-describedby="sk-tooltip-12979">https://help.qlik.com/en-US/catalog/November2021/Content/Resources/PDFs/QlikCatalog_November_2021_SingleNode_InstallGuide.pdf#page=21</A></DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> <DIV class="c-message_actions__container c-message__actions" role="group"> <DIV class="c-message_actions__group" role="group" aria-label="Message shortcuts" data-qa="message-actions">&nbsp;</DIV> </DIV> </DIV> </DIV> </DIV> </DIV> <DIV id="1639227668.002500" class="c-virtual_list__item" tabindex="0" role="listitem" data-qa="virtual-list-item"> <DIV class="c-message_kit__background p-message_pane_message__message c-message_kit__message" role="presentation" data-qa="message_container" data-qa-unprocessed="false" data-qa-placeholder="false"> <DIV class="c-message_kit__hover" role="document" aria-roledescription="message" data-qa-hover="true"> <DIV class="c-message_kit__actions c-message_kit__actions--above"> <DIV class="c-message_kit__gutter"> <DIV class="c-message_kit__gutter__right" role="presentation" data-qa="message_content"> <DIV class="c-message_kit__blocks c-message_kit__blocks--rich_text"> <DIV class="c-message__message_blocks c-message__message_blocks--rich_text"> <DIV class="p-block_kit_renderer" data-qa="block-kit-renderer"> <DIV class="p-block_kit_renderer__block_wrapper p-block_kit_renderer__block_wrapper--first"> <DIV class="p-rich_text_block" dir="auto"> <DIV class="p-rich_text_section"><A class="c-link" tabindex="-1" href="https://help.qlik.com/en-US/search/?q=log4j" target="_blank" rel="noopener noreferrer" data-stringify-link="https://help.qlik.com/en-US/search/?q=log4j" data-sk="tooltip_parent" data-remove-tab-index="true">https://help.qlik.com/en-US/search/?q=log4j</A></DIV> <DIV class="p-rich_text_section">&nbsp;</DIV> <DIV class="p-rich_text_section">Kind regards,</DIV> <DIV class="p-rich_text_section">&nbsp;</DIV> <DIV class="p-rich_text_section">Erik Dolstra</DIV> <DIV class="p-rich_text_section">Product Owner Data Tooling DPG Media</DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> </DIV> Wed, 29 Jan 2025 16:57:53 GMT https://community.qlik.com/t5/Management-Governance/Log4J-vulnerability-check/m-p/1869342#M30076 ErikDolstraDPGMedia 2025-01-29T16:57:53Z https://community.qlik.com/t5/Management-Governance/Log4J-vulnerability-check/m-p/1869362#M30077 <P>Hi Erik,<BR /><SPAN style="font-family: inherit;">Qlik is aware of the&nbsp;recently&nbsp;published security vulnerability&nbsp;in&nbsp;Apache Log4j, reference&nbsp;CVE-2021-44228&nbsp;(also referred to as&nbsp;</SPAN><I>Log4Shell</I><SPAN style="font-family: inherit;">)</SPAN><I>.</I><SPAN style="font-family: inherit;">&nbsp;As soon as the vulnerability was published, Qlik immediately began a security investigation to determine if and how Qlik’s products and services are impacted.</SPAN><SPAN style="font-family: inherit;">&nbsp;</SPAN></P> <P><SPAN>Our preliminary investigations have confirmed that&nbsp;</SPAN><SPAN>Client-managed&nbsp;Qlik Sense Enterprise,&nbsp;QlikView,&nbsp;Nprinting&nbsp;are confirmed as not including the vulnerable component. Other Qlik products are still under evaluation and patches will be made available as necessary.</SPAN></P> <P><SPAN>Thank you,</SPAN></P> <P><SPAN>Patrick<BR />Director, CSO Experience Programs<BR />Qlik</SPAN></P> Sat, 11 Dec 2021 14:56:14 GMT https://community.qlik.com/t5/Management-Governance/Log4J-vulnerability-check/m-p/1869362#M30077 PatrickQ 2021-12-11T14:56:14Z https://community.qlik.com/t5/Management-Governance/Log4J-vulnerability-check/m-p/1869393#M30078 <P>Ongoing updates will be posted to here:<BR /><A href="https://community.qlik.com/t5/Support-Updates-Blog/Vulnerability-Testing-Apache-Log4j-reference-CVE-2021-44228-also/bc-p/1869391#M1993" target="_blank">Vulnerability Testing - &nbsp;Apache Log4j, reference&nbsp;C... - Qlik Community - 1869368</A></P> Sat, 11 Dec 2021 17:13:54 GMT https://community.qlik.com/t5/Management-Governance/Log4J-vulnerability-check/m-p/1869393#M30078 PatrickQ 2021-12-11T17:13:54Z