6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.044 Low
EPSS
Percentile
92.3%
09/16/2015
High
XML external entity vulnerability was found in QlikView at AccessPoint.aspx. By exploiting this vulnerability malicious users can read arbitrary files. This vulnerability can be exploited remotely via a specially designed xml data.
QlikTech Qlikview versions earlier than 11.20 SR12
Update to the latest version
Get QlikView
RLF
CVE-2015-36236.4High
Public exploits exist for this vulnerability.