Lucene search
K

301 matches found

Cvelist
Cvelist
added 2025/07/25 6:53 p.m.25 views

CVE-2025-52448

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux validate-initial-sql api modules allows Interface Manipulation data access to the production database cluster. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before...

0.00335EPSS
Exploits0References1
CVE
CVE
added 2025/07/25 6:53 p.m.33 views

CVE-2025-52448

CVE-2025-52448 : An authorization bypass in Salesforce Tableau Server on Windows and Linux stems from a vulnerability in the validate-initial-sql API modules that allows interface manipulation and data access to the production database cluster via a user-controlled key. Affected Tableau Server ve...

8.1CVSS6.5AI score0.00335EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/07/25 6:50 p.m.32 views

CVE-2025-52447

Summary of CVE-2025-52447: Affected product is Tableau Server (Salesforce) on Windows and Linux. The vulnerability arises from an authorization bypass through the user-controlled set-initial-sql tabdoc command modules, enabling interface manipulation and potential data access to the production da...

8.1CVSS6.7AI score0.00342EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/25 6:50 p.m.8 views

CVE-2025-52447

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux set-initial-sql tabdoc command modules allows Interface Manipulation data access to the production database cluster. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12,...

0.00342EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/25 6:50 p.m.5 views

CVE-2025-52447

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux set-initial-sql tabdoc command modules allows Interface Manipulation data access to the production database cluster. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12,...

7.2AI score0.00342EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/25 6:43 p.m.22 views

CVE-2025-52446

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux tab-doc api modules allows Interface Manipulation data access to the production database cluster.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

0.00229EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/25 6:43 p.m.5 views

CVE-2025-52446

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux tab-doc api modules allows Interface Manipulation data access to the production database cluster.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

6.5AI score0.00229EPSS
Exploits0References1
CVE
CVE
added 2025/07/25 6:43 p.m.33 views

CVE-2025-52446

CVE-2025-52446 is a verified vulnerability in Salesforce Tableau Server (Windows and Linux) where an authorization bypass occurs via a user-controlled key in the tab-doc API modules, enabling interface manipulation and potential access to the production database cluster. Affected versions are Tab...

8CVSS6.6AI score0.00229EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/25 12:0 a.m.5 views

PT-2025-30924 · Tableau · Tableau Server

Name of the Vulnerable Software and Affected Versions: Tableau Server versions prior to 2025.1.3 Tableau Server versions prior to 2024.2.12 Tableau Server versions prior to 2023.3.19 Description: Tableau Server contains a flaw in the Extensible Protocol Service modules that allows unrestricted fi...

8.5CVSS7.3AI score0.00246EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/07/25 12:0 a.m.4 views

Salesforce Tableau Server 安全漏洞

Salesforce Tableau Server is a data visualization and analytics platform from Salesforce, Inc. A security vulnerability exists in Salesforce Tableau Server versions prior to 2025.1.3, prior to 2024.2.12, and prior to 2023.3.19, which stems from insufficient validation of the Amazon S3 Connector...

8.2CVSS6.6AI score0.00288EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/07/25 12:0 a.m.7 views

PT-2025-30927 · Tableau · Tableau Server

Name of the Vulnerable Software and Affected Versions: Tableau Server versions prior to 2025.1.3 Tableau Server versions prior to 2024.2.12 Tableau Server versions prior to 2023.3.19 Description: A Server-Side Request Forgery SSRF vulnerability exists in Tableau Server on Windows and Linux system...

5.3CVSS6.6AI score0.00288EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/06/26 12:0 a.m.6 views

PT-2025-30919 · Salesforce · Tableau Server

Name of the Vulnerable Software and Affected Versions: Tableau Server versions prior to 2025.1.3 Tableau Server versions prior to 2024.2.12 Tableau Server versions prior to 2023.3.19 Description: A flaw exists in Salesforce Tableau Server on Windows and Linux that allows an authorization bypass...

8.3CVSS6.3AI score0.00229EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/06/26 12:0 a.m.5 views

PT-2025-30922 · Salesforce · Tableau Server

Name of the Vulnerable Software and Affected Versions: Tableau Server versions prior to 2025.1.3 Tableau Server versions prior to 2024.2.12 Tableau Server versions prior to 2023.3.19 Description: An authorization bypass issue exists in Salesforce Tableau Server on Windows and Linux, specifically...

8.5CVSS6.5AI score0.00342EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/06/26 12:0 a.m.8 views

PT-2025-30923 · Salesforce · Tableau Server

Name of the Vulnerable Software and Affected Versions: Tableau Server versions prior to 2025.1.3 Tableau Server versions prior to 2024.2.12 Tableau Server versions prior to 2023.3.19 Description: An authorization bypass issue exists in Salesforce Tableau Server on Windows and Linux due to a...

8.5CVSS6.4AI score0.00335EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2025/06/26 12:0 a.m.7 views

PT-2025-30925 · Salesforce · Tableau Server

Name of the Vulnerable Software and Affected Versions: Tableau Server versions prior to 2025.1.3 Tableau Server versions prior to 2024.2.12 Tableau Server versions prior to 2023.3.19 Description: A path traversal issue exists in Salesforce Tableau Server on Windows and Linux due to improper...

8.5CVSS6.4AI score0.00416EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/06/26 12:0 a.m.6 views

PT-2025-30928 · Tableau · Tableau Server

Name of the Vulnerable Software and Affected Versions: Tableau Server versions prior to 2025.1.3 Tableau Server versions prior to 2024.2.12 Tableau Server versions prior to 2023.3.19 Description: Tableau Server is susceptible to a Server-Side Request Forgery SSRF issue within the EPS Server modul...

5.3CVSS6.4AI score0.00319EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/06/26 12:0 a.m.6 views

PT-2025-30926 · Tableau · Tableau Server

Name of the Vulnerable Software and Affected Versions: Tableau Server versions prior to 2025.1.3 Tableau Server versions prior to 2024.2.12 Tableau Server versions prior to 2023.3.19 Description: A Server-Side Request Forgery SSRF vulnerability exists in Tableau Server on Windows and Linux Flow...

8.2CVSS6.5AI score0.00288EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/22 11:45 p.m.10 views

CVE-2022-22128

Tableau discovered a path traversal vulnerability affecting Tableau Server Administration Agent’s internal file transfer service that could allow remote code execution.Tableau only supports product versions for 24 months after release. Older versions have reached their End of Life and are no long...

9.8CVSS7.8AI score0.0134EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:45 p.m.9 views

CVE-2022-22127

Tableau is aware of a broken access control vulnerability present in Tableau Server affecting Tableau Server customers using Local Identity Store for managing users. The vulnerability allows a malicious site administrator to change passwords for users in different sites hosted on the same Tableau...

7.2CVSS6.7AI score0.0097EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:17 p.m.7 views

CVE-2021-1629

Tableau Server fails to validate certain URLs that are embedded in emails sent to Tableau Server users...

6.1CVSS6.8AI score0.01338EPSS
Exploits2References1
Rows per page
Query Builder