← Back

CVE-2025-61138

nvd nist
Published: Nov 20, 2025Modified: Dec 10, 2025

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 3.9 / Impact: 3.6
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

Qlik Sense Enterprise v14.212.13 was discovered to contain an information leak via the /dev-hub/ directory.

Affected (1)

Products: Qlik: Qlik Sense
Qlik
1 product
Qlik Sense
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Qlik Sense
Version 14.212.13

Related CWEs

CWE-538
Insertion of Sensitive Information into Externally-Accessible File or Directory
The product places sensitive information into files or directories that are accessible to actors who are allowed to have access to the files, but not to the sensitive information.

References (1)

Source: cve@mitre.org
MitigationThird Party Advisory

Timeline

No history available yet.