Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
FLASH SALE: Save $500! Use code FLASH2026 at checkout until Feb 14th at 11:59PM ET. Register Now!
Sonja_Bauernfeind
Digital Support
Digital Support
3 weeks ago

Qlik’s Response to Apache Tika vulnerability CVE-2025-66516

In December 2025, the Apache Project announced a vulnerability in Apache Tika (CVE-2025-66516) and provided patches to resolve the issue. Qlik has been reviewing our usage of the Apache Tika product suite and has identified a limited impact as follows.

 

Affected Software 

Apache Tika is used in several Qlik products. However, the vulnerability is only relevant to the case of a Talend Studio route that uses Apache Tika to parse PDFs.

No other use case or product is impacted by the vulnerability. Qlik Cloud and Talend Cloud are not impacted by this vulnerability.

Nevertheless, we are patching all our products that contain Apache Tika out of an abundance of caution. Be on the lookout for a series of product patches for supported and affected versions.

 

Recommendation 

The releases listed in the table below contain the updated version of Apache Tika, which addresses CVE-2025-66516.

Always update to the latest version. Before you upgrade, check if a more recent release is available.
 Product Patch Release Date
Talend Studio R2025-11v2 December 16, 2025
Talend Administration Center QTAC-1472 December 19, 2025
Talend ESB Runtime R2025-12-RT December 19, 2025
Talend Remote Engine Gen 2. Connectors 1.58.8 December 23, 2025
Talend Data Stewardship TPS-6013 December 23, 2025
Talend Data Preparation TPS-6016 January 16, 2026

 

 

Thank you for choosing Qlik,
Qlik Support

635 Views
0 Likes
Subscribe by Topic