virus logo FortiClient Vulnerability

QlikTech Qlikview CVE-2015-3623 XML external entity Vulnerability

description-logoDescription

XML external entity (XXE) vulnerability in QlikTech Qlikview before 11.20 SR12 allows remote attackers to conduct server-side request forgery (SSRF) attacks and read arbitrary files via crafted XML data in a request to AccessPoint.aspx.

affected-products-logoAffected Applications

Qlikview

CVE References

CVE-2015-3623

Other References

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3623
ID 2284
Created Jul 28, 2021
Description
Updated		 Nov 07, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor QlikTech
Patch manual
Application Qlikview