CISA adds Qlik bugs to exploited vulnerabilities catalog

Two vulnerabilities affecting a popular data analytics tool were added to the Cybersecurity and Infrastructure Security Agency’s (CISA) list of exploited bugs this week. On Thursday, CISA added CVE-2023-41265 and CVE-2023-41266 to its catalog, giving federal civilian agencies until December 28 to patch the issues. Both bugs were found this summer in Qlik Sense —

agency analytics bugs catalog cisa civilian cve cybercrime cybersecurity data data analytics december exploited exploited vulnerabilities federal federal civilian found government infrastructure infrastructure security list patch popular qlik security summer technology tool vulnerabilities week