Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Join us on Sept. 17 to hear how our new GenAI Assistant empowers data professionals: REGISTER
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
414132137
Contributor
Contributor
‎2024-08-06 01:52 AM

Qlik Sense Feb 2022 vulnerability, Risk found

Hi Experts,

Our Qlik Sense on Windows Deployment (Feb 2022) was scanned by our internal cyber security protection software and 1 problem was found.

IT Infra team told us there is a risk of sensitive information leakage from Swagger-UI component where Qlik Sense is using.  Would anyone be aware of this? And what should I do to get rid of this? Thx.

Labels (1)
Labels
193 Views
0 Likes
2 Replies
Vegar
MVP
MVP
‎2024-08-06 03:49 AM

I have not heard about this issue. 

Please note that you are running a unsupported version of Qlik Sense, and if this is a new issue then Qlik will most likely not create any fix for that version. I suggest you to consider upgrading to a supported version and check for the vulnerability in that version. See Qlik Sense Enterprise on Windows Product Lifecycle for info on how long each QS version is supported.

 

If you are  concerned about it not being fixed in newer versions as well, then I suggest you reach out to Qlik Support for confirmation (or reporting the issue). 

Vegar
Qlik Community MVP
169 Views
0 Likes
414132137
Contributor
Contributor
‎2024-08-06 03:55 AM
Author

In response to Vegar

Thank you, Vegar. That's fair. We would plan on an upgrade then.

165 Views
0 Likes