Multiple vulnerabilities in Qlik Sense Enterprise for Windows

Published: 2023-08-31 | Updated: 2023-11-30

Risk	High
Patch available	YES
Number of vulnerabilities	2
CVE-ID	CVE-2023-41265 CVE-2023-41266
CWE-ID	CWE-444 CWE-22
Exploitation vector	Network
Public exploit	Vulnerability #1 is being exploited in the wild. Vulnerability #2 is being exploited in the wild.
Vulnerable software Subscribe	Qlik Sense Enterprise for Windows Other software / Other software solutions
Vendor	Qlik Community

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Inconsistent interpretation of HTTP requests

EUVDB-ID: #VU80193

Risk: High

CVSSv3.1: 7.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N/E:H/RL:O/RC:C]

CVE-ID: CVE-2023-41265

CWE-ID: CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling')

Exploit availability: No

Description

The vulnerability allows a remote attacker to escalate privileges on the system.

The vulnerability exists due to improper validation of HTTP headers. A remote user can send a specially crafted HTTP request over a tunneled connection and gain elevated privileges on the system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

Qlik Sense Enterprise for Windows: August 2022 Patch 12 - November 2022 Patch 10

External links

http://community.qlik.com/t5/Official-Support-Articles/Critical-Security-fixes-for-Qlik-Sense-Enterprise-for-Windows/ta-p/2110801
http://arcticwolf.com/resources/blog/cve-2023-41265-cve-2023-41266-cve-2023-48365/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

2) Path traversal

EUVDB-ID: #VU80196