Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Defect acknowledgement with Nprinting Engine May 2022 SR2, please READ HERE
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
qliktime
Partner - Contributor III
Partner - Contributor III
‎2025-04-23 01:06 PM

Is Nprinting affected by CVE-2025-32433

Hi,

a customer IT threat scan flagged an Nprinting installation, more specifically the Erlang executables.

Related to https://nvd.nist.gov/vuln/detail/CVE-2025-32433

I'm urgently looking for an official post explaining if Nprinting is affected by this vulnerability or not?

Labels (2)
Labels
2,241 Views
2 Solutions

Accepted Solutions
Frank_S
Support
Support
‎2025-04-23 04:24 PM

Hello @qliktime 

Please review the following and proceed accordingly.

Qlik Security Vulnerability Policy - Qlik Community - 1713629

A Qlik Support case will need to be started directly with our Qlik Support desk.

 

Opening a Case

Create Case in Case Portal

Transcript: Opening a Support Case from the Qlik C... - Qlik Community - 1840694

 

Kind regards...

Please remember hit the 'Like' button and for helpful answers and resolutions, click on the 'Accept As Solution' button. Cheers!

View solution in original post

2,074 Views
0 Likes
Andrea_Bertazzo
Support
Support
‎2025-04-28 08:21 AM

Hi,

 

NPrinting is not affected by that vulnerability.
Erlang is installed with NPrinting only as part of the RabbitMQ installation and RabbitMQ is not afffected by CVE-2025-32433 as you can see here:

https://www.rabbitmq.com/blog/2025/04/24/rabbitmq-is-not-affected-by-cve-2025-32433

In short, we are not affected because NPrinting does not use SSH.

Here's an offical article about this topic:
https://community.qlik.com/t5/Official-Support-Articles/Qlik-NPrinting-and-the-CVE-2025-32433-Erlang...

 

 

 

 
Help users find answers! Do not forget to mark a solution that worked for you! If already marked, give it a thumbs up ! 🙂

View solution in original post

1,894 Views
13 Replies
Frank_S
Support
Support
‎2025-04-23 04:24 PM

Hello @qliktime 

Please review the following and proceed accordingly.

Qlik Security Vulnerability Policy - Qlik Community - 1713629

A Qlik Support case will need to be started directly with our Qlik Support desk.

 

Opening a Case

Create Case in Case Portal

Transcript: Opening a Support Case from the Qlik C... - Qlik Community - 1840694

 

Kind regards...

Please remember hit the 'Like' button and for helpful answers and resolutions, click on the 'Accept As Solution' button. Cheers!
2,075 Views
0 Likes
Lech_Miszkiewicz
Partner Ambassador/MVP
Partner Ambassador/MVP
‎2025-04-23 07:27 PM

Hi @qliktime 

We dont know what version of NPrinting your client has. You can always relate to documentation to see what Erlang version is installed and make your educated decision. So if you compare that with the link you sent re volnurabilities you should know what to do.

Lech_Miszkiewicz_1-1745450806327.png

 

https://help.qlik.com/en-US/nprinting/February2025/Content/NPrinting/DeployingQVNprinting/System-req...

Lech_Miszkiewicz_0-1745450605838.png

 

cheers

Lech

 

 

cheers Lech, When applicable please mark the correct/appropriate replies as "solution" (you can mark up to 3 "solutions". Please LIKE threads if the provided solution is helpful to the problem.
2,063 Views
qliktime
Partner - Contributor III
Partner - Contributor III
‎2025-04-24 05:52 AM
Author

I help multiple clients running different versions of Nprinting, so it was intentional to not mention exact version.
I'll file a request with support.

2,034 Views
0 Likes
Lech_Miszkiewicz
Partner Ambassador/MVP
Partner Ambassador/MVP
‎2025-04-24 08:52 PM

In response to qliktime

Hi @qliktime 

you sort of missed my point. You said that “customers IT thread scan flagged it….” If thats the case you should check the version with that customer and if it is not upgraded to the latest available plan for upgrade. 
As i have shown you on my screenshots the latest version should not be affected hence in my opinion opening support ticket without checking the version is simply waste of your time and support time. On the other hand if it is the latest version and it still comes back as threat then we also would like to know as that threat would be different to what you posted  

cheers

cheers Lech, When applicable please mark the correct/appropriate replies as "solution" (you can mark up to 3 "solutions". Please LIKE threads if the provided solution is helpful to the problem.
1,991 Views
0 Likes
Andrea_Bertazzo
Support
Support
‎2025-04-28 08:21 AM

Hi,

 

NPrinting is not affected by that vulnerability.
Erlang is installed with NPrinting only as part of the RabbitMQ installation and RabbitMQ is not afffected by CVE-2025-32433 as you can see here:

https://www.rabbitmq.com/blog/2025/04/24/rabbitmq-is-not-affected-by-cve-2025-32433

In short, we are not affected because NPrinting does not use SSH.

Here's an offical article about this topic:
https://community.qlik.com/t5/Official-Support-Articles/Qlik-NPrinting-and-the-CVE-2025-32433-Erlang...

 

 

 

 
Help users find answers! Do not forget to mark a solution that worked for you! If already marked, give it a thumbs up ! 🙂
1,895 Views
Thomas6
Contributor II
Contributor II
‎2025-06-18 04:59 AM

Hello, 

Our security team has alerted us that Erlang OTP version 25.3.2 is installed on our Qlik server. This is considered a security vulnerability, and we should upgrade to version 27.3.3 or newer. Our Qlik version is already May 2025. How can we update this software?

Thanks in advance for any help.

1,411 Views
0 Likes
Lech_Miszkiewicz
Partner Ambassador/MVP
Partner Ambassador/MVP
‎2025-06-18 08:27 AM

In response to Thomas6

Hi @Thomas6 

you cannot, you need to wait for next NPrinting release. 

Also, I suggest read through the answers from Qlik support guys below who explain that vulnerabilities described are not relevant as there is no use of SSH. 

cheers

cheers Lech, When applicable please mark the correct/appropriate replies as "solution" (you can mark up to 3 "solutions". Please LIKE threads if the provided solution is helpful to the problem.
1,388 Views
0 Likes
Ruggero_Piccoli
Support
Support
‎2025-06-18 08:54 AM

In response to Thomas6

Hi,

If with Qlik you mean Qlik NPrinting, February 2025 SR1 has Erlang 27.3.3 as documented in https://help.qlik.com/en-US/nprinting/February2025/Content/NPrinting/DeployingQVNprinting/System-req... and it is available for upgrade.

Best Regards,

Ruggero



Best Regards,
Ruggero
---------------------------------------------
When applicable please mark the appropriate replies as CORRECT. This will help community members and Qlik Employees know which discussions have already been addressed and have a possible known solution. Please mark threads with a LIKE if the provided solution is helpful to the problem, but does not necessarily solve the indicated problem. You can mark multiple threads with LIKEs if you feel additional info is useful to others.
1,380 Views
Thomas6
Contributor II
Contributor II
‎2025-06-23 01:10 AM

In response to Ruggero_Piccoli

Hello Ruggero,

thanks for your answer. With Qlik i mean our Qlik Sense Environment. On the qlik sense enterprise server we get this vulnerabilities messages. 

We have also Qlik NPrinting but on these servers we have February 2025 SR1 and the correct version of Erlang. 

The question is how to get the right version of Erlang on our Qlik sense servers or is it ok to uninstall it from them.

Thanks and best regards

Thomas

1,338 Views
0 Likes