Solved: Are some Qlik products affected by Spring4Shell(CV... - Qlik Community

kensukehomma · ‎2022-04-01

Could you please tell me if any Qlik products are affected by Spring4Shell (CVE-2022-22965) and the extent of the impact.

Albert_Candelario · ‎2022-04-04

Hello all,

Please be aware of Qlik’s Response to March 2022 Spring Framework Vul... - Qlik Community - 1913992

Cheers

Please, remember to mark the thread as solved once getting the correct answer

View solution in original post

harrip · ‎2022-04-01

I second this question - does Qlik have a statement, patch or work around out for Spring4Shell vulnerability? Can't find anything on website.

lvdbrink · ‎2022-04-04

I have asked this question on the Qlik support Teams channel with no response so far. Logged a case 10 minutes ago on the support portal with the same question. Will mention this thread in that ticket as well so that Qlik support knows to respond here when they have the information.

Albert_Candelario · ‎2022-04-04

Hello all,

Please be aware of Qlik’s Response to March 2022 Spring Framework Vul... - Qlik Community - 1913992

Cheers

Please, remember to mark the thread as solved once getting the correct answer

lvdbrink · ‎2022-04-04

Qlik Published a blog post regarding these vulnerabilities. Only Qlik Catalog on premise seems to be affected. See:

https://community.qlik.com/t5/Support-Updates-Blog/Qlik-s-Response-to-March-2022-Spring-Framework-Vu...

Are some Qlik products affected by Spring4Shell(CVE-2022-22965)?