CVE-2023-48365
CRITICAL
9,6
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: changed
Confidentiality: high
Integrity: high
Availability: none
Description
AI Translation Available
Qlik Sense Enterprise for Windows before August 2023 Patch 2 allows unauthenticated remote code execution, aka QB-21683. Due to improper validation of HTTP headers, a remote attacker is able to elevate their privilege by tunneling HTTP requests, allowing them to execute HTTP requests on the backend server that hosts the repository application. The fixed versions are August 2023 Patch 2, May 2023 Patch 6, February 2023 Patch 10, November 2022 Patch 12, August 2022 Patch 14, May 2022 Patch 16, February 2022 Patch 15, and November 2021 Patch 17. NOTE: this issue exists because of an incomplete fix for CVE-2023-41265.
EPSS (Exploit Prediction Scoring System)
Trend Analysis
EPSS (Exploit Prediction Scoring System)
Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.
EPSS Score
0,5681
Percentile
1,0th
Updated
EPSS Score Trend (Last 90 Days)
444
Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')
IncompleteCommon Consequences
Security Scopes Affected:
Integrity
Non-Repudiation
Access Control
Potential Impacts:
Unexpected State
Hide Activities
Bypass Protection Mechanism
Applicable Platforms
Technologies:
Web Based, Web Server
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_5:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_1:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2022:patch_8:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_1:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_9:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:-:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:patch_5:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:patch_11:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_9:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:patch_8:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2023:patch_5:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_8:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:-:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2023:patch_2:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2023:patch_1:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_11:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2023:patch_1:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2022:patch_1:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2023:-:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_4:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:patch_12:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2022:patch_9:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_6:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2023:patch_3:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:-:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_11:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2022:patch_6:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_6:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_2:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2023:patch_8:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:patch_7:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2023:patch_5:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2023:patch_9:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:patch_10:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_4:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_6:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2022:-:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2023:patch_7:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_12:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2022:patch_11:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_3:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_10:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_3:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2023:patch_3:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2023:-:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_12:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2023:patch_4:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_15:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2023:-:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_1:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_12:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_10:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_2:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2022:patch_3:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_15:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:patch_13:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_8:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2023:patch_4:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:patch_3:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_5:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_8:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_4:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_13:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_14:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_11:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_7:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_14:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_10:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2022:patch_10:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_3:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2022:patch_7:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:patch_6:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_5:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:-:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2023:patch_2:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_16:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_13:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:patch_9:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_2:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:patch_2:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2023:patch_6:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2023:patch_1:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_9:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2022:patch_5:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:patch_4:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2022:patch_4:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_7:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:may_2022:patch_13:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:february_2022:patch_14:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2022:patch_2:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:august_2022:patch_1:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Qlik Sense by Qlik
CPE Identifier
View Detailed Analysis
cpe:2.3:a:qlik:qlik_sense:november_2021:patch_7:*:*:enterprise:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023…
https://community.qlik.com/t5/Official-Support-Articles/Critical-Security-fixes…
https://community.qlik.com/t5/Official-Support-Articles/Critical-Security-fixes…