Lucene search
K

301 matches found

NVD
NVD
added 2025/07/25 7:15 p.m.7 views

CVE-2025-52452

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Salesforce Tableau Server on Windows, Linux tabdoc api - duplicate-data-source modules allows Absolute Path Traversal. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3....

8.5CVSS0.00416EPSS
Exploits0References1
NVD
NVD
added 2025/07/25 7:15 p.m.7 views

CVE-2025-52448

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux validate-initial-sql api modules allows Interface Manipulation data access to the production database cluster. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before...

8.1CVSS0.00335EPSS
Exploits0References1
NVD
NVD
added 2025/07/25 7:15 p.m.6 views

CVE-2025-52446

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux tab-doc api modules allows Interface Manipulation data access to the production database cluster.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

8CVSS0.00229EPSS
Exploits0References1
OSV
OSV
added 2025/07/25 7:15 p.m.3 views

CVE-2025-52446

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux tab-doc api modules allows Interface Manipulation data access to the production database cluster.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

8CVSS5.8AI score0.00229EPSS
Exploits0References1
CVE
CVE
added 2025/07/25 7:11 p.m.22 views

CVE-2025-52455

Summary (CVE-2025-52455) : This SSRF (Resource Location Spoofing) vulnerability affects Salesforce Tableau Server on Windows and Linux within the EPS Server modules. Concrete details in connected documents show affected versions: Tableau Server before 2025.1.3, before 2024.2.12, and before 2023.3...

5.3CVSS6.7AI score0.00319EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/25 7:11 p.m.4 views

CVE-2025-52455

Server-Side Request Forgery SSRF vulnerability in Salesforce Tableau Server on Windows, Linux EPS Server modules allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

7.2AI score0.00319EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/25 7:11 p.m.7 views

CVE-2025-52455

Server-Side Request Forgery SSRF vulnerability in Salesforce Tableau Server on Windows, Linux EPS Server modules allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

0.00319EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/25 7:8 p.m.9 views

CVE-2025-52454

Server-Side Request Forgery SSRF vulnerability in Salesforce Tableau Server on Windows, Linux Amazon S3 Connector modules allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

0.00288EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/25 7:8 p.m.2 views

CVE-2025-52454

Server-Side Request Forgery SSRF vulnerability in Salesforce Tableau Server on Windows, Linux Amazon S3 Connector modules allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

7.2AI score0.00288EPSS
Exploits0References1
CVE
CVE
added 2025/07/25 7:8 p.m.24 views

CVE-2025-52454

Summary (CVE-2025-52454) : A Server-Side Request Forgery (SSRF) vulnerability exists in Salesforce Tableau Server on Windows and Linux via the Amazon S3 Connector modules, enabling Resource Location Spoofing. Affected versions are Tableau Server before 2025.1.3, before 2024.2.12, and before 2023....

8.2CVSS6.7AI score0.00288EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/25 7:5 p.m.5 views

CVE-2025-52453

Server-Side Request Forgery SSRF vulnerability in Salesforce Tableau Server on Windows, Linux Flow Data Source modules allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

7.2AI score0.00288EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/25 7:5 p.m.6 views

CVE-2025-52453

Server-Side Request Forgery SSRF vulnerability in Salesforce Tableau Server on Windows, Linux Flow Data Source modules allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

0.00288EPSS
Exploits0References1
CVE
CVE
added 2025/07/25 7:5 p.m.24 views

CVE-2025-52453

CVE-2025-52453 is a Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows and Linux, specifically in the Flow Data Source modules, that enables Resource Location Spoofing. Affected Tableau Server versions are before 2025.1.3, before 2024.2.12, and before 2023.3....

8.2CVSS6.7AI score0.00288EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/25 7:0 p.m.24 views

CVE-2025-52452

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Salesforce Tableau Server on Windows, Linux tabdoc api - duplicate-data-source modules allows Absolute Path Traversal. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3....

0.00416EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/25 7:0 p.m.9 views

CVE-2025-52452

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Salesforce Tableau Server on Windows, Linux tabdoc api - duplicate-data-source modules allows Absolute Path Traversal. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3....

7AI score0.00416EPSS
Exploits0References1
CVE
CVE
added 2025/07/25 7:0 p.m.60 views

CVE-2025-52452

CVE-2025-52452 is a path traversal vulnerability in Salesforce Tableau Server , affecting Tableau Server on Windows and Linux via the tabdoc API and duplicate-data-source modules. The issue allows absolute path traversal and impacts Tableau Server versions prior to 2025.1.3, prior to 2024.2.12, a...

8.5CVSS7AI score0.00416EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/25 6:56 p.m.7 views

CVE-2025-52449

Unrestricted Upload of File with Dangerous Type vulnerability in Salesforce Tableau Server on Windows, Linux Extensible Protocol Service modules allows Alternative Execution Due to Deceptive Filenames RCE. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

0.00246EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/25 6:56 p.m.5 views

CVE-2025-52449

Unrestricted Upload of File with Dangerous Type vulnerability in Salesforce Tableau Server on Windows, Linux Extensible Protocol Service modules allows Alternative Execution Due to Deceptive Filenames RCE. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19...

7.2AI score0.00246EPSS
Exploits0References1
CVE
CVE
added 2025/07/25 6:56 p.m.29 views

CVE-2025-52449

CVE-2025-52449 affects Salesforce Tableau Server’s Extensible Protocol Service modules. An unchecked or unrestricted upload of files with dangerous types can lead to remote code execution via deceptive filenames, as described for Tableau Server versions prior to 2025.1.3, 2024.2.12, and 2023.3.19...

8.5CVSS7.2AI score0.00246EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/25 6:53 p.m.6 views

CVE-2025-52448

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux validate-initial-sql api modules allows Interface Manipulation data access to the production database cluster. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before...

7.1AI score0.00335EPSS
Exploits0References1
Rows per page
Query Builder