cvelistv5 - CVE-2025-26495

CVE-2025-26495 (GCVE-0-2025-26495)

Vulnerability from cvelistv5 – Published: 2025-02-11 17:56 – Updated: 2025-03-04 20:15

Title

Sensitive Data Exposure in Tableau Server

Summary

Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record the Personal Access Token (PAT) into logging repositories.This issue affects Tableau Server: before 2022.1.3, before 2021.4.8, before 2021.3.13, before 2021.2.14, before 2021.1.16, before 2020.4.19.

Severity ?

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-312 - Cleartext Storage of Sensitive Information

Assigner

Salesforce

References

URL

Tags

https://help.salesforce.com/s/articleView?id=0003…

Impacted products

	Vendor	Product	Version
	Salesforce	Tableau Server	Affected: 0 , < 2022.1.3 (custom) Affected: 0 , < 2021.4.8 (custom) Affected: 0 , < 2021.3.13 (custom) Affected: 0 , < 2021.2.14 (custom) Affected: 0 , < 2021.1.16 (custom) Affected: 0 , < 2020.4.19 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-26495",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-03-04T20:15:23.243570Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-04T20:15:58.653Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Tableau Server",
          "vendor": "Salesforce",
          "versions": [
            {
              "lessThan": "2022.1.3",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "2021.4.8",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "2021.3.13",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "2021.2.14",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "2021.1.16",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "lessThan": "2020.4.19",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record the Personal Access Token (PAT) into logging repositories.\u003cp\u003eThis issue affects Tableau Server: before 2022.1.3, before 2021.4.8, before 2021.3.13, before 2021.2.14, before 2021.1.16, before 2020.4.19.\u003c/p\u003e"
            }
          ],
          "value": "Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record the Personal Access Token (PAT) into logging repositories.This issue affects Tableau Server: before 2022.1.3, before 2021.4.8, before 2021.3.13, before 2021.2.14, before 2021.1.16, before 2020.4.19."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-21",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-21 Exploitation of Trusted Identifiers"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-312",
              "description": "CWE-312 Cleartext Storage of Sensitive Information",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-02-11T17:56:38.732Z",
        "orgId": "c9b25dee-ae6d-4083-ba23-638c500cc364",
        "shortName": "Salesforce"
      },
      "references": [
        {
          "url": "https://help.salesforce.com/s/articleView?id=000390611\u0026type=1"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Sensitive Data Exposure in Tableau Server",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c9b25dee-ae6d-4083-ba23-638c500cc364",
    "assignerShortName": "Salesforce",
    "cveId": "CVE-2025-26495",
    "datePublished": "2025-02-11T17:56:38.732Z",
    "dateReserved": "2025-02-11T17:18:13.649Z",
    "dateUpdated": "2025-03-04T20:15:58.653Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-26495\",\"sourceIdentifier\":\"security@salesforce.com\",\"published\":\"2025-02-11T18:15:47.237\",\"lastModified\":\"2025-10-29T15:08:01.430\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record the Personal Access Token (PAT) into logging repositories.This issue affects Tableau Server: before 2022.1.3, before 2021.4.8, before 2021.3.13, before 2021.2.14, before 2021.1.16, before 2020.4.19.\"},{\"lang\":\"es\",\"value\":\"La vulnerabilidad de almacenamiento de informaci\u00f3n confidencial en texto plano en Salesforce Tableau Server puede registrar el token de acceso personal (PAT) en repositorios de registro. Este problema afecta a Tableau Server: antes de 2022.1.3, antes de 2021.4.8, antes de 2021.3.13, antes de 2021.2.14, antes de 2021.1.16, antes de 2020.4.19.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security@salesforce.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-312\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2020.4\",\"versionEndExcluding\":\"2020.4.19\",\"matchCriteriaId\":\"89668C62-9F48-4914-A391-4DA1CE44C7F5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2021.1\",\"versionEndExcluding\":\"2021.1.16\",\"matchCriteriaId\":\"A26646C2-CA36-45DE-8BDB-6D14A5190F38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2021.2\",\"versionEndExcluding\":\"2021.2.14\",\"matchCriteriaId\":\"B4BEDE08-81B5-4E10-8651-69CE9DEE5086\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2021.3\",\"versionEndExcluding\":\"2021.3.13\",\"matchCriteriaId\":\"FD291DFE-EA74-4755-B6FB-4961F7B74065\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2021.4\",\"versionEndExcluding\":\"2021.4.8\",\"matchCriteriaId\":\"8DD95C14-E97C-4CD3-A29A-9049AA04478D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2022.1\",\"versionEndExcluding\":\"2022.1.3\",\"matchCriteriaId\":\"FE8D01C1-E585-458B-A8DD-8A0FA60FF890\"}]}]}],\"references\":[{\"url\":\"https://help.salesforce.com/s/articleView?id=000390611\u0026type=1\",\"source\":\"security@salesforce.com\",\"tags\":[\"Broken Link\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-26495\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-03-04T20:15:23.243570Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-03-04T20:14:37.952Z\"}}], \"cna\": {\"title\": \"Sensitive Data Exposure in Tableau Server\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"impacts\": [{\"capecId\": \"CAPEC-21\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-21 Exploitation of Trusted Identifiers\"}]}], \"affected\": [{\"vendor\": \"Salesforce\", \"product\": \"Tableau Server\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2022.1.3\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2021.4.8\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2021.3.13\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2021.2.14\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2021.1.16\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2020.4.19\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://help.salesforce.com/s/articleView?id=000390611\u0026type=1\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record the Personal Access Token (PAT) into logging repositories.This issue affects Tableau Server: before 2022.1.3, before 2021.4.8, before 2021.3.13, before 2021.2.14, before 2021.1.16, before 2020.4.19.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record the Personal Access Token (PAT) into logging repositories.\u003cp\u003eThis issue affects Tableau Server: before 2022.1.3, before 2021.4.8, before 2021.3.13, before 2021.2.14, before 2021.1.16, before 2020.4.19.\u003c/p\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-312\", \"description\": \"CWE-312 Cleartext Storage of Sensitive Information\"}]}], \"providerMetadata\": {\"orgId\": \"c9b25dee-ae6d-4083-ba23-638c500cc364\", \"shortName\": \"Salesforce\", \"dateUpdated\": \"2025-02-11T17:56:38.732Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-26495\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-03-04T20:15:58.653Z\", \"dateReserved\": \"2025-02-11T17:18:13.649Z\", \"assignerOrgId\": \"c9b25dee-ae6d-4083-ba23-638c500cc364\", \"datePublished\": \"2025-02-11T17:56:38.732Z\", \"assignerShortName\": \"Salesforce\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

tid-226

Vulnerability from emb3d

Type

system-software

Link

Show details on source website

Description

Some devise will login information that can be exploited by attackers to further their attack against the device or the system in which the device resides. This data can vary, but in general if a device logs any secrets that would break it’s safety, confidentiality, integrity, or availability, a threat actor may be able to use that information to further their goals. For example, if a private key is printed in a debug or event log after generation, threat actors may be able to take the key and use it to decrypt network communications. Another instance is a threat actor being able to take information associated with a core-dump log of a failed process and turn it into an exploit.

CWE

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
CWE-532 Insertion of Sensitive Information into Log File

FKIE_CVE-2025-26495

Vulnerability from fkie_nvd - Published: 2025-02-11 18:15 - Updated: 2025-10-29 15:08

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

References

	URL	Tags
	security@salesforce.com	https://help.salesforce.com/s/articleView?id=000390611&type=1	Broken Link

Impacted products

Vendor	Product	Version
tableau	tableau_server	*
tableau	tableau_server	*
tableau	tableau_server	*
tableau	tableau_server	*
tableau	tableau_server	*
tableau	tableau_server	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "89668C62-9F48-4914-A391-4DA1CE44C7F5",
              "versionEndExcluding": "2020.4.19",
              "versionStartIncluding": "2020.4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A26646C2-CA36-45DE-8BDB-6D14A5190F38",
              "versionEndExcluding": "2021.1.16",
              "versionStartIncluding": "2021.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B4BEDE08-81B5-4E10-8651-69CE9DEE5086",
              "versionEndExcluding": "2021.2.14",
              "versionStartIncluding": "2021.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "FD291DFE-EA74-4755-B6FB-4961F7B74065",
              "versionEndExcluding": "2021.3.13",
              "versionStartIncluding": "2021.3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8DD95C14-E97C-4CD3-A29A-9049AA04478D",
              "versionEndExcluding": "2021.4.8",
              "versionStartIncluding": "2021.4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "FE8D01C1-E585-458B-A8DD-8A0FA60FF890",
              "versionEndExcluding": "2022.1.3",
              "versionStartIncluding": "2022.1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record the Personal Access Token (PAT) into logging repositories.This issue affects Tableau Server: before 2022.1.3, before 2021.4.8, before 2021.3.13, before 2021.2.14, before 2021.1.16, before 2020.4.19."
    },
    {
      "lang": "es",
      "value": "La vulnerabilidad de almacenamiento de informaci\u00f3n confidencial en texto plano en Salesforce Tableau Server puede registrar el token de acceso personal (PAT) en repositorios de registro. Este problema afecta a Tableau Server: antes de 2022.1.3, antes de 2021.4.8, antes de 2021.3.13, antes de 2021.2.14, antes de 2021.1.16, antes de 2020.4.19."
    }
  ],
  "id": "CVE-2025-26495",
  "lastModified": "2025-10-29T15:08:01.430",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-02-11T18:15:47.237",
  "references": [
    {
      "source": "security@salesforce.com",
      "tags": [
        "Broken Link"
      ],
      "url": "https://help.salesforce.com/s/articleView?id=000390611\u0026type=1"
    }
  ],
  "sourceIdentifier": "security@salesforce.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-312"
        }
      ],
      "source": "security@salesforce.com",
      "type": "Secondary"
    }
  ]
}

GHSA-F9RW-96G7-CWHW

Vulnerability from github – Published: 2025-02-11 18:31 – Updated: 2025-03-04 21:30

Details

Severity ?

7.5 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-26495"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-312"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-02-11T18:15:47Z",
    "severity": "HIGH"
  },
  "details": "Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record the Personal Access Token (PAT) into logging repositories.This issue affects Tableau Server: before 2022.1.3, before 2021.4.8, before 2021.3.13, before 2021.2.14, before 2021.1.16, before 2020.4.19.",
  "id": "GHSA-f9rw-96g7-cwhw",
  "modified": "2025-03-04T21:30:53Z",
  "published": "2025-02-11T18:31:43Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-26495"
    },
    {
      "type": "WEB",
      "url": "https://help.salesforce.com/s/articleView?id=000390611\u0026type=1"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

SSA-246355

Vulnerability from csaf_siemens - Published: 2025-02-11 00:00 - Updated: 2025-02-14 00:00

Summary

SSA-246355: Multiple Vulnerabilities in Tableau Server Component of Opcenter Intelligence

Notes

Summary

The Tableau Server component in Opcenter Intelligence contains multiple vulnerabilities as described below. Siemens has released a new version for Opcenter Intelligence and recommends to update to the latest version and to install the latest available version of Tableau Server as described in https://support.sw.siemens.com/knowledge-base/PL8822108.

General Recommendations

As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals. Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity

Additional Resources

For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories

The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)",
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "The Tableau Server component in Opcenter Intelligence contains multiple vulnerabilities as described below.\n\nSiemens has released a new version for Opcenter Intelligence and recommends to update to the latest version and to install the latest available version of Tableau Server as described in \nhttps://support.sw.siemens.com/knowledge-base/PL8822108.",
        "title": "Summary"
      },
      {
        "category": "general",
        "text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
        "title": "General Recommendations"
      },
      {
        "category": "general",
        "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "productcert@siemens.com",
      "name": "Siemens ProductCERT",
      "namespace": "https://www.siemens.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "SSA-246355: Multiple Vulnerabilities in Tableau Server Component of Opcenter Intelligence - HTML Version",
        "url": "https://cert-portal.siemens.com/productcert/html/ssa-246355.html"
      },
      {
        "category": "self",
        "summary": "SSA-246355: Multiple Vulnerabilities in Tableau Server Component of Opcenter Intelligence - CSAF Version",
        "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-246355.json"
      }
    ],
    "title": "SSA-246355: Multiple Vulnerabilities in Tableau Server Component of Opcenter Intelligence",
    "tracking": {
      "current_release_date": "2025-02-14T00:00:00Z",
      "generator": {
        "engine": {
          "name": "Siemens ProductCERT CSAF Generator",
          "version": "1"
        }
      },
      "id": "SSA-246355",
      "initial_release_date": "2025-02-11T00:00:00Z",
      "revision_history": [
        {
          "date": "2025-02-11T00:00:00Z",
          "legacy_version": "1.0",
          "number": "1",
          "summary": "Publication date"
        },
        {
          "date": "2025-02-14T00:00:00Z",
          "legacy_version": "1.1",
          "number": "2",
          "summary": "Replaced Siemens assigned CVEs CVE-2025-26490 and CVE-2025-26491 with Salesforce assigned CVEs  CVE-2025-26494 and  CVE-2025-26495"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/\u003cV2501",
                "product": {
                  "name": "Opcenter Intelligence",
                  "product_id": "1"
                }
              }
            ],
            "category": "product_name",
            "name": "Opcenter Intelligence"
          }
        ],
        "category": "vendor",
        "name": "Siemens"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-22127",
      "cwe": {
        "id": "CWE-287",
        "name": "Improper Authentication"
      },
      "notes": [
        {
          "category": "summary",
          "text": "Tableau is aware of a broken access control vulnerability present in Tableau Server affecting Tableau Server customers using Local Identity Store for managing users. The vulnerability allows a malicious site administrator to change passwords for users in different sites hosted on the same Tableau Server, resulting in the potential for unauthorized access to data.Tableau Server versions affected are:2020.4.16, 2021.1.13, 2021.2.10, 2021.3.9, 2021.4.4 and earlierNote: All future releases of Tableau Server will address this security issue. Versions that are no longer supported are not tested and may be vulnerable.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "1"
        ]
      },
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2501 or later version and install the latest available version of Tableau Server as described in \nhttps://support.sw.siemens.com/knowledge-base/PL8822108",
          "product_ids": [
            "1"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "1"
          ]
        }
      ],
      "title": "CVE-2022-22127"
    },
    {
      "cve": "CVE-2022-22128",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "notes": [
        {
          "category": "summary",
          "text": "Tableau discovered a path traversal vulnerability affecting Tableau Server Administration Agent\u2019s internal file transfer service that could allow remote code execution.Tableau only supports product versions for 24 months after release. Older versions have reached their End of Life and are no longer supported. They are also not assessed for potential security issues and do not receive security updates.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "1"
        ]
      },
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2501 or later version and install the latest available version of Tableau Server as described in \nhttps://support.sw.siemens.com/knowledge-base/PL8822108",
          "product_ids": [
            "1"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.0,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "1"
          ]
        }
      ],
      "title": "CVE-2022-22128"
    },
    {
      "cve": "CVE-2023-46604",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "summary",
          "text": "The Java OpenWire protocol marshaller is vulnerable to Remote Code Execution. This vulnerability may allow a remote attacker with network access to either a Java-based OpenWire broker or client to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol to cause either the client or the broker (respectively) to instantiate any class on the classpath. Users are recommended to upgrade both brokers and clients to version 5.15.16, 5.16.7, 5.17.6, or 5.18.3 which fixes this issue.",
          "title": "Summary"
        },
        {
          "category": "summary",
          "text": "Impact of this vulnerability to Tableau Server as described in \u003chttps://kb.tableau.com/articles/Issue/remote-code-execution-rce-vulnerability-impacting-apache-activemq-clients\u003e:\r\n\r\nOn November 2, 2023, Apache announced the discovery of CVE-2023-46604, a Remote Code Execution (RCE) vulnerability impacting Apache ActiveMQ clients.  As a result of this issue, a remote threat actor with network access to either a Java-based OpenWire broker or client could execute a RCE to run arbitrary shell commands.",
          "title": "For Opcenter Intelligence"
        }
      ],
      "product_status": {
        "known_affected": [
          "1"
        ]
      },
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2501 or later version and install the latest available version of Tableau Server as described in \nhttps://support.sw.siemens.com/knowledge-base/PL8822108",
          "product_ids": [
            "1"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.6,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "1"
          ]
        }
      ],
      "title": "CVE-2023-46604"
    },
    {
      "cve": "CVE-2025-26494",
      "cwe": {
        "id": "CWE-918",
        "name": "Server-Side Request Forgery (SSRF)"
      },
      "notes": [
        {
          "category": "summary",
          "text": "Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server allows Authentication Bypass.This issue affects Tableau Server: from 2023.3 through 2023.3.5.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "1"
        ]
      },
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2501 or later version and install the latest available version of Tableau Server as described in \nhttps://support.sw.siemens.com/knowledge-base/PL8822108",
          "product_ids": [
            "1"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "1"
          ]
        }
      ],
      "title": "CVE-2025-26494"
    },
    {
      "cve": "CVE-2025-26495",
      "cwe": {
        "id": "CWE-312",
        "name": "Cleartext Storage of Sensitive Information"
      },
      "notes": [
        {
          "category": "summary",
          "text": "Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record the Personal Access Token (PAT) into logging repositories.This issue affects Tableau Server: before 2022.1.3, before 2021.4.8, before 2021.3.13, before 2021.2.14, before 2021.1.16, before 2020.4.19.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "1"
        ]
      },
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2501 or later version and install the latest available version of Tableau Server as described in \nhttps://support.sw.siemens.com/knowledge-base/PL8822108",
          "product_ids": [
            "1"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "1"
          ]
        }
      ],
      "title": "CVE-2025-26495"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-26495 (GCVE-0-2025-26495)

tid-226

Vulnerability from emb3d

FKIE_CVE-2025-26495

GHSA-F9RW-96G7-CWHW

SSA-246355

Tags

Sightings

Nomenclature