Tableau

Tableau Server

22 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.5

CVE-2025-52449

  • EPSS 0.02%
  • Veröffentlicht 25.07.2025 19:15:40
  • Zuletzt bearbeitet 31.10.2025 19:23:27

Unrestricted Upload of File with Dangerous Type vulnerability in Salesforce Tableau Server on Windows, Linux (Extensible Protocol Service modules) allows Alternative Execution Due to Deceptive Filenames (RCE). This issue affects Tableau Server: befor...

8.1

CVE-2025-52447

  • EPSS 0.04%
  • Veröffentlicht 25.07.2025 19:15:40
  • Zuletzt bearbeitet 31.10.2025 19:24:22

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux (set-initial-sql tabdoc command modules) allows Interface Manipulation (data access to the production database cluster). This issue affects ...

8

CVE-2025-52446

  • EPSS 0.02%
  • Veröffentlicht 25.07.2025 19:15:40
  • Zuletzt bearbeitet 31.10.2025 19:24:37

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux (tab-doc api modules) allows Interface Manipulation (data access to the production database cluster).This issue affects Tableau Server: befo...

7.5

CVE-2025-26495

  • EPSS 0.07%
  • Veröffentlicht 11.02.2025 18:15:47
  • Zuletzt bearbeitet 29.10.2025 15:08:01

Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record the Personal Access Token (PAT) into logging repositories.This issue affects Tableau Server: before 2022.1.3, before 2021.4.8, before 2021.3.13, before 2...

7.7

CVE-2025-26494

  • EPSS 0.1%
  • Veröffentlicht 11.02.2025 18:15:47
  • Zuletzt bearbeitet 29.10.2025 15:10:02

Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server allows Authentication Bypass.This issue affects Tableau Server: from 2023.3 through 2023.3.5.

9.8

CVE-2022-22128

  • EPSS 1.69%
  • Veröffentlicht 17.10.2022 16:15:20
  • Zuletzt bearbeitet 13.05.2025 21:15:59

Tableau discovered a path traversal vulnerability affecting Tableau Server Administration Agent’s internal file transfer service that could allow remote code execution.Tableau only supports product versions for 24 months after release. Older versions...

7.2

CVE-2022-22127

  • EPSS 0.39%
  • Veröffentlicht 25.05.2022 14:15:08
  • Zuletzt bearbeitet 21.11.2024 06:46:13

Tableau is aware of a broken access control vulnerability present in Tableau Server affecting Tableau Server customers using Local Identity Store for managing users. The vulnerability allows a malicious site administrator to change passwords for user...

6.1

CVE-2021-1629

Exploit
  • EPSS 0.29%
  • Veröffentlicht 26.03.2021 17:15:12
  • Zuletzt bearbeitet 21.11.2024 05:44:46

Tableau Server fails to validate certain URLs that are embedded in emails sent to Tableau Server users.

10

CVE-2020-6939

  • EPSS 1.36%
  • Veröffentlicht 23.11.2020 17:15:12
  • Zuletzt bearbeitet 21.11.2024 05:36:22

Tableau Server installations configured with Site-Specific SAML that allows the APIs to be used by unauthenticated users. If exploited, this could allow a malicious user to configure Site-Specific SAML settings and could lead to account takeover for ...

7.5

CVE-2020-6938

  • EPSS 0.32%
  • Veröffentlicht 08.07.2020 16:15:11
  • Zuletzt bearbeitet 21.11.2024 05:36:22

A sensitive information disclosure vulnerability in Tableau Server 10.5, 2018.x, 2019.x, 2020.x released before June 26, 2020, could allow access to sensitive information in log files.