Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tableau tableau server vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2019-15637
Numerous Tableau products are vulnerable to XXE via a malicious workbook, extension, or data source, leading to information disclosure or a DoS. This affects Tableau Server, Tableau Desktop, Tableau Reader, and Tableau Public Desktop.
Tableau Tableau Server
Tableau Tableau Desktop
Tableau Tableau Reader
Tableau Tableau Public Desktop
1 EDB exploit
7.5
CVSSv3
CVE-2020-6938
A sensitive information disclosure vulnerability in Tableau Server 10.5, 2018.x, 2019.x, 2020.x released before June 26, 2020, could allow access to sensitive information in log files.
Tableau Tableau Server
Tableau Tableau Server 10.5
NA
CVE-2014-1204
SQL injection vulnerability in Tableau Server 8.0.x prior to 8.0.7 and 8.1.x prior to 8.1.2 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. NOTE: this can be exploited by unauthenticated remote attackers if the guest user is enabled.
Tableausoftware Tableau Server 8.0.3
Tableausoftware Tableau Server 8.0.2
Tableausoftware Tableau Server 8.0.4
Tableausoftware Tableau Server 8.0.5
Tableausoftware Tableau Server 8.0
Tableausoftware Tableau Server 8.0.1
Tableausoftware Tableau Server 8.0.6
Tableausoftware Tableau Server 8.1.1
Tableausoftware Tableau Server 8.1
1 EDB exploit
6.1
CVSSv3
CVE-2021-1629
Tableau Server fails to validate certain URLs that are embedded in emails sent to Tableau Server users.
Tableau Tableau Server
7.2
CVSSv3
CVE-2022-22127
Tableau is aware of a broken access control vulnerability present in Tableau Server affecting Tableau Server customers using Local Identity Store for managing users. The vulnerability allows a malicious site administrator to change passwords for users in different sites hosted on...
Tableau Tableau Server
9.8
CVSSv3
CVE-2022-22128
Tableau discovered a path traversal vulnerability affecting Tableau Server Administration Agent’s internal file transfer service that could allow remote code execution.Tableau only supports product versions for 24 months after release. Older versions have reached their End ...
Tableau Tableau Server
6.1
CVSSv3
CVE-2019-19719
Tableau Server 10.3 up to and including 2019.4 on Windows and Linux allows XSS via the embeddedAuthRedirect page.
Tableau Tableau Server
9.8
CVSSv3
CVE-2020-6939
Tableau Server installations configured with Site-Specific SAML that allows the APIs to be used by unauthenticated users. If exploited, this could allow a malicious user to configure Site-Specific SAML settings and could lead to account takeover for users of that site. Tableau Se...
Tableau Tableau Server
9.8
CVSSv3
CVE-2017-5178
An issue exists in Schneider Electric Tableau Server/Desktop Versions 7.0 to 10.1.3 in Wonderware Intelligence Versions 2014R3 and prior. These versions contain a system account that is installed by default. The default system account is difficult to configure with non-default cr...
Schneider-electric Tableau Desktop 10.1.3
Schneider-electric Tableau Server 10.1.3
Schneider-electric Tableau Server 7.0
Schneider-electric Wonderware Intelligence
Schneider-electric Tableau Desktop 7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started