Vulners
Lucene search
CVE-2021-1629
🗓️ 26 Mar 2021 16:20:28Reported by SalesforceType 
cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 185 Views🌐 WEB
| Reporter | Title | Published | Views | Family All 9 |
|---|---|---|---|---|
 | 塔谱软件 Tableau Software Server 输入验证错误漏洞 | 26 Mar 202100:00 | – | cnnvd |
 | Tableau Server users open redirection vulnerability | 30 Mar 202100:00 | – | cnvd |
 | CVE-2021-1629 | 26 Mar 202116:20 | – | cvelist |
 | EUVD-2021-7096 | 3 Oct 202520:07 | – | euvd |
 | Vulnerability fixed in Tableau Server | 9 Apr 202100:00 | – | ncsc |
 | CVE-2021-1629 | 26 Mar 202117:15 | – | nvd |
 | Tableau Server Open Redirection | 8 Apr 202100:00 | – | packetstorm |
 | Code injection | 26 Mar 202117:15 | – | prion |
 | CVE-2021-1629 | 22 May 202521:17 | – | redhatcve |
Node
OROROROR
Node
OROROROR
[
{
"product": "Tableau",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Tableau Server versions affected on both Windows and Linux are: 2019.4 through 2019.4.17 2020.1 through 2020.1.13 2020.2 through 2020.2.10 2020.3 through 2020.3.6 2020.4 through 2020.4.2"
}
]
}
]| Source | Link |
|---|---|
| help | www.help.salesforce.com/articleView |
| seclists | www.seclists.org/fulldisclosure/2021/Apr/22 |
| packetstormsecurity | www.packetstormsecurity.com/files/162138/Tableau-Server-Open-Redirection.html |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| contentId | request body | vizportal/api/web/v1/shareContent | URL redirection to an untrusted site via the shareContent endpoint by injecting a malicious URL in the shared content payload | CWE-601 |
| contentType | request body | vizportal/api/web/v1/shareContent | URL redirection to an untrusted site via the shareContent endpoint by injecting a malicious URL in the shared content payload | CWE-601 |
| recipients | request body | vizportal/api/web/v1/shareContent | URL redirection to an untrusted site via the shareContent endpoint by injecting a malicious URL in the shared content payload | CWE-601 |
| url | request body | vizportal/api/web/v1/shareContent | URL redirection to an untrusted site via the shareContent endpoint by injecting a malicious URL in the shared content payload | CWE-601 |
| message | request body | vizportal/api/web/v1/shareContent | URL redirection to an untrusted site via the shareContent endpoint by injecting a malicious URL in the shared content payload | CWE-601 |
| shouldShareThumbnail | request body | vizportal/api/web/v1/shareContent | URL redirection to an untrusted site via the shareContent endpoint by injecting a malicious URL in the shared content payload | CWE-601 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
21 Nov 2024 05:44Current
6.2Medium risk
Vulners AI Score6.2
CVSS 25.8
CVSS 3.16.1
EPSS0.0029