Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Qlik and ServiceNow Partner to Bring Trusted Enterprise Context into AI-Powered Workflows. Learn More!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
dobak
Partner - Contributor III
Partner - Contributor III
‎2024-02-08 06:35 AM

.NET DOS vulnarabilities CVE-2023-36042

Hi, our customer is running Qlik Sense Enterprise May 2023 patch 11 and has performance and stability issues of Qlik when running a security/vulnerability scan on the infrastructure.

This is the list of .net related issues found by the scanner: CVE-2023-36042, CVE-2024-21312, CVE-2024-0056, CVE-2024-0057

Would patching to 13 fix this? Which version of .net is in Patch 13 for May 2023?

In general is there a list of .net versions supplied by the Qlik installers?

Labels (1)
Labels
1,061 Views
0 Likes
2 Replies
Deeksha_JayaSapalya
Support
Support
‎2024-02-12 01:31 AM

Hi @dobak 

The supported .net framework for may 2023 Qlik Sense is 4.8. Please refer the system requirement for additional info.
System requirements for Qlik Sense Enterprise 

However, I could not find the provided CVE reported in our forum so would request you to submit a case along with the report mentioned in the below article
Qlik Security Vulnerability Policy  

I hope this helps!

Best Regards,
Deeksha

 

1,009 Views
dobak
Partner - Contributor III
Partner - Contributor III
‎2024-02-15 02:55 AM
Author

In response to Deeksha_JayaSapalya

according to the answer from support this should be fixed from Nov 2023 + the latest patch.

974 Views