CVE-2024-55579
CVSS 3.1 Score 8.8 of 10 (high)
Details
Summary
CVE-2024-55579 is a vulnerability affecting Qlik Sense Enterprise for Windows prior to November 2024 IR. This issue allows unprivileged users with network access to create connection objects that trigger the execution of arbitrary EXE files, posing a significant security risk. The vulnerability is addressed in multiple patches, including November 2023 Patch 16, August 2023 Patch 16, May 2023 Patch 18, February 2023 Patch 15, May 2024 Patch 10, and February 2024 Patch 14. It's essential for organizations using Qlik Sense Enterprise for Windows to apply these patches to mitigate the risk of exploitation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.