Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Join us in NYC Sept 4th for Qlik's AI Reality Tour! Register Now

Qlik Data Integration products: PGAdmin Next.js Middleware Authorization Bypass Vulnerability CVE-2025-29927

No ratings
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Dana_Baldwin
Support
Support

Qlik Data Integration products: PGAdmin Next.js Middleware Authorization Bypass Vulnerability CVE-2025-29927

Last Update:

Aug 11, 2025 4:27:49 AM

Updated By:

Sonja_Bauernfeind

Created date:

Aug 11, 2025 4:24:31 AM

Is Qlik Replicate affected by CVE-2025-29927? (Next.js Middleware Authorization Bypass Vulnerability (CVE-2025-29927) – Qualys ThreatPROTECT)

Resolution

None of Qlik's Data Integration products (Qlik Replicate, Qlik Compose, Qlik Enterprise Manager, Qlik Catalog) use next.js and are not exposed to CVE-2025-29927.

Review if other programs are installed that are affected and uninstall or upgrade them as required, such as PGAdmin.

Note that while Qlik Replicate uses the PostgreSQL driver when PostgreSQL is used as a source or target endpoint, PGAdmin does not need to be installed on the server. 

 

Environment

  • Qlik Replicate
Labels (1)
Labels:
108 Views
Was this article helpful? Yes No
Version history
Last update:
3 weeks ago
Updated by:
Digital Support