CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2037 matches found

RedhatCVE•added 2025/08/24 9:12 p.m.•4 views

CVE-2025-52451

Improper Input Validation vulnerability in Salesforce Tableau Server on Windows, Linux tabdoc api - create-data-source-from-file-upload modules allows Absolute Path Traversal.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

8.5CVSS7.2AI score0.00031EPSS

Exploits0References1

RedhatCVE•added 2025/08/24 9:12 p.m.•5 views

CVE-2025-26497

Unrestricted Upload of File with Dangerous Type vulnerability in Salesforce Tableau Server on Windows, Linux Flow Editor modules allows Absolute Path Traversal.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

7.3CVSS7.2AI score0.00102EPSS

Exploits0References1

RedhatCVE•added 2025/08/24 12:34 p.m.•4 views

CVE-2025-9259

WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to download arbitrary system files...

7.1CVSS7.5AI score0.00094EPSS

Exploits0References1

RedhatCVE•added 2025/08/24 12:34 p.m.•4 views

CVE-2025-9258

WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to download arbitrary system files...

7.1CVSS7.5AI score0.00094EPSS

Exploits0References1

RedhatCVE•added 2025/08/24 11:42 a.m.•5 views

CVE-2025-9256

WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to download arbitrary system files...

7.1CVSS7.5AI score0.00094EPSS

Exploits0References1

NVD•added 2025/08/22 9:15 p.m.•4 views

CVE-2025-52451

8.5CVSS0.00031EPSS

Exploits0References1

NVD•added 2025/08/22 9:15 p.m.•5 views

CVE-2025-52450

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Salesforce Tableau Server on Windows, Linux abdoc api - create-data-source-from-file-upload modules allows Absolute Path Traversal.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12,...

6.5CVSS0.00148EPSS

Exploits0References1

NVD•added 2025/08/22 9:15 p.m.•3 views

CVE-2025-26498

Unrestricted Upload of File with Dangerous Type vulnerability in Salesforce Tableau Server on Windows, Linux establish-connection-no-undo modules allows Absolute Path Traversal.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

7.3CVSS0.00102EPSS

Exploits0References1

NVD•added 2025/08/22 9:15 p.m.•3 views

CVE-2025-26497

7.3CVSS0.00102EPSS

Exploits0References1

CVE•added 2025/08/22 8:20 p.m.•18 views

CVE-2025-52451

CVE-2025-52451 describes an improper input validation in Tableau Server's tabdoc api, specifically the create-data-source-from-file-upload module, enabling Absolute Path Traversal on Tableau Server installations. Affected versions are Tableau Server before 2025.1.3, before 2024.2.12, and before 2...

8.5CVSS6.7AI score0.00031EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/08/22 8:20 p.m.•5 views

CVE-2025-52451

7.2AI score0.00031EPSS

Exploits0References1

Cvelist•added 2025/08/22 8:20 p.m.•7 views

CVE-2025-52451

0.00031EPSS

Exploits0References1

CVE•added 2025/08/22 8:18 p.m.•15 views

CVE-2025-52450

CVE-2025-52450 describes an Absolute Path Traversal in Salesforce Tableau Server on Windows and Linux via the abdoc api - create-data-source-from-file-upload modules. Affected Tableau Server versions are before 2025.1.3, before 2024.2.12, and before 2023.3.19. The vulnerability is triggered by im...

6.5CVSS6.5AI score0.00148EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/08/22 8:18 p.m.•7 views

CVE-2025-52450

0.00148EPSS

Exploits0References1

Cvelist•added 2025/08/22 8:16 p.m.•5 views

CVE-2025-26498

0.00102EPSS

Exploits0References1

CVE•added 2025/08/22 8:16 p.m.•14 views

CVE-2025-26498

CVE-2025-26498 affects Tableau Server (Salesforce Tableau Server on Windows/Linux) due to an Unrestricted Upload of File with Dangerous Type via the establish-connection-no-undo modules, enabling absolute path traversal. Affected versions are Tableau Server prior to 2025.1.3, prior to 2024.2.12, ...

7.3CVSS6.7AI score0.00102EPSS

Exploits0References1Affected Software1

CVE•added 2025/08/22 8:13 p.m.•14 views

CVE-2025-26497

CVE-2025-26497 affects Salesforce Tableau Server (Flow Editor modules) and enables an Unrestricted Upload of a Dangerous File Type leading to Absolute Path Traversal. Affected are Tableau Server versions prior to 2025.1.3, prior to 2024.2.12, and prior to 2023.3.19. Root cause: arbitrary file upl...

7.3CVSS6.7AI score0.00102EPSS

Exploits0References1Affected Software1

OSV•added 2025/08/22 12:15 p.m.•1 views

CVE-2025-9256

WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to download arbitrary system files...

7.1CVSS5.9AI score

Exploits0References2

NVD•added 2025/08/22 12:15 p.m.•6 views

CVE-2025-9258

WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to download arbitrary system files...

7.1CVSS0.00094EPSS

Exploits0References2

NVD•added 2025/08/22 12:15 p.m.•5 views

CVE-2025-9257

WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to download arbitrary system files...

7.1CVSS0.00094EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by