Qlik Replicate Meta Data Request from EC2 Should be IMDSv2 compliant.
Qlik Replicate Meta Data Request from EC2 are not IMDSv2 compliant. As a result, instances hosting replicate are susceptible to SSRF attacks from an intruder using the curl command. Please address this serious vulnerability in your product.
NOTE: Upon clicking this link 2 tabs may open - please feel free to close the one with a login page. If you only see 1 tab with the login page, please try clicking this link first: Authenticate me! then try the link above again. Ensure pop-up blocker is off.