7.5

CVE-2025-26495

Sensitive Data Exposure in Tableau Server

Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record the Personal Access Token (PAT) into logging repositories.This issue affects Tableau Server: before 2022.1.3, before 2021.4.8, before 2021.3.13, before 2021.2.14, before 2021.1.16, before 2020.4.19.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
TableauTableau Server Version >= 2020.4 < 2020.4.19
TableauTableau Server Version >= 2021.1 < 2021.1.16
TableauTableau Server Version >= 2021.2 < 2021.2.14
TableauTableau Server Version >= 2021.3 < 2021.3.13
TableauTableau Server Version >= 2021.4 < 2021.4.8
TableauTableau Server Version >= 2022.1 < 2022.1.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.31% 0.226
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE-312 Cleartext Storage of Sensitive Information

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

https://help.salesforce.com/s/articleView?id=000390611&type=1
Broken Link