Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-52455 (GCVE-0-2025-52455)
Vulnerability from cvelistv5 – Published: 2025-07-25 19:11 – Updated: 2025-07-25 20:35
VLAI
EPSS
Summary
Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.
Severity
5.3 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-918 - Server-Side Request Forgery (SSRF)
Assigner
References
1 reference
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Salesforce | Tableau Server |
Affected:
0 , < 2025.1.3
(semver)
Affected: 0 , < 2024.2.12 (semver) Affected: 0 , < 2023.3.19 (semver) |
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2025-52455",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-07-25T20:34:52.928277Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-07-25T20:35:15.934Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"modules": [
"EPS Server"
],
"platforms": [
"Windows",
"Linux"
],
"product": "Tableau Server",
"vendor": "Salesforce",
"versions": [
{
"lessThan": "2025.1.3",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "2024.2.12",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "2023.3.19",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19."
}
],
"value": "Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19."
}
],
"impacts": [
{
"capecId": "CAPEC-154",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-154 Resource Location Spoofing"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-918",
"description": "CWE-918 Server-Side Request Forgery (SSRF)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-07-25T19:11:47.772Z",
"orgId": "c9b25dee-ae6d-4083-ba23-638c500cc364",
"shortName": "Salesforce"
},
"references": [
{
"url": "https://help.salesforce.com/s/articleView?id=005105043\u0026type=1"
}
],
"source": {
"discovery": "UNKNOWN"
},
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "c9b25dee-ae6d-4083-ba23-638c500cc364",
"assignerShortName": "Salesforce",
"cveId": "CVE-2025-52455",
"datePublished": "2025-07-25T19:11:47.772Z",
"dateReserved": "2025-06-16T20:18:48.946Z",
"dateUpdated": "2025-07-25T20:35:15.934Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-52455",
"date": "2026-06-17",
"epss": "0.00301",
"percentile": "0.2153"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-52455\",\"sourceIdentifier\":\"security@salesforce.com\",\"published\":\"2025-07-25T19:15:41.263\",\"lastModified\":\"2025-10-29T20:31:58.033\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.\"},{\"lang\":\"es\",\"value\":\"Server-Side Request Forgery (SSRF) en Salesforce Tableau Server para Windows y Linux (m\u00f3dulos EPS Server) permite la suplantaci\u00f3n de la ubicaci\u00f3n de recursos. Este problema afecta a Tableau Server: versiones anteriores a 2025.1.3, 2024.2.12 y 2023.3.19. \"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"security@salesforce.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-918\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2023.3.19\",\"matchCriteriaId\":\"19541292-4BD4-4BD5-AA68-3836ECC1EBE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2024.2\",\"versionEndExcluding\":\"2024.2.12\",\"matchCriteriaId\":\"4AC0483E-569A-497C-BB94-D129FACC17D5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2025.1\",\"versionEndExcluding\":\"2025.1.3\",\"matchCriteriaId\":\"1E78711C-389B-4E20-9623-8B0CF6BBCAC8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2572D17-1DE6-457B-99CC-64AFD54487EA\"}]}]}],\"references\":[{\"url\":\"https://help.salesforce.com/s/articleView?id=005105043\u0026type=1\",\"source\":\"security@salesforce.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"LOW\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-52455\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-07-25T20:34:52.928277Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-07-25T20:35:10.743Z\"}}], \"cna\": {\"source\": {\"discovery\": \"UNKNOWN\"}, \"impacts\": [{\"capecId\": \"CAPEC-154\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-154 Resource Location Spoofing\"}]}], \"affected\": [{\"vendor\": \"Salesforce\", \"modules\": [\"EPS Server\"], \"product\": \"Tableau Server\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2025.1.3\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2024.2.12\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2023.3.19\", \"versionType\": \"semver\"}], \"platforms\": [\"Windows\", \"Linux\"], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://help.salesforce.com/s/articleView?id=005105043\u0026type=1\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-918\", \"description\": \"CWE-918 Server-Side Request Forgery (SSRF)\"}]}], \"providerMetadata\": {\"orgId\": \"c9b25dee-ae6d-4083-ba23-638c500cc364\", \"shortName\": \"Salesforce\", \"dateUpdated\": \"2025-07-25T19:11:47.772Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-52455\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-07-25T20:35:15.934Z\", \"dateReserved\": \"2025-06-16T20:18:48.946Z\", \"assignerOrgId\": \"c9b25dee-ae6d-4083-ba23-638c500cc364\", \"datePublished\": \"2025-07-25T19:11:47.772Z\", \"assignerShortName\": \"Salesforce\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
Title
Уязвимость модуля EPS Server аналитической платформы Tableau Server, позволяющая нарушителю осуществить SSRF-атаку
Description
Уязвимость модуля EPS Server аналитической платформы Tableau Server связана с недостаточной проверкой запросов на стороне сервера. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, осуществить SSRF-атаку
Severity
Vendor
Salesforce, Inc.
Software Name
Tableau Server
Software Version
до 2025.1.3 (Tableau Server), до 2024.2.12 (Tableau Server), до 2023.3.19 (Tableau Server)
Possible Mitigations
Использование рекомендаций:
https://help.salesforce.com/s/articleView?id=005105043&type=4
Reference
https://www.webasha.com/blog/what-are-the-critical-vulnerabilities-in-salesforce-tableau-server-and-how-can-they-be-exploited-by-attackers
https://help.salesforce.com/s/articleView?language=en_US&id=005105043&type=1
CWE
CWE-918
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Salesforce, Inc.",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u0434\u043e 2025.1.3 (Tableau Server), \u0434\u043e 2024.2.12 (Tableau Server), \u0434\u043e 2023.3.19 (Tableau Server)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://help.salesforce.com/s/articleView?id=005105043\u0026type=4",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "26.06.2025",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "14.08.2025",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "14.08.2025",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2025-09770",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2025-52455",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Tableau Server",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux - , Microsoft Corp Windows - ",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0434\u0443\u043b\u044f EPS Server \u0430\u043d\u0430\u043b\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b Tableau Server, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0438\u0442\u044c SSRF-\u0430\u0442\u0430\u043a\u0443",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0421\u0435\u0440\u0432\u0435\u0440\u043d\u0430\u044f \u0444\u0430\u043b\u044c\u0441\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044f \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432 (CWE-918)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0434\u0443\u043b\u044f EPS Server \u0430\u043d\u0430\u043b\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b Tableau Server \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432 \u043d\u0430 \u0441\u0442\u043e\u0440\u043e\u043d\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0438\u0442\u044c SSRF-\u0430\u0442\u0430\u043a\u0443",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041f\u043e\u0434\u043c\u0435\u043d\u0430 \u043f\u0440\u0438 \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://www.webasha.com/blog/what-are-the-critical-vulnerabilities-in-salesforce-tableau-server-and-how-can-they-be-exploited-by-attackers \nhttps://help.salesforce.com/s/articleView?language=en_US\u0026id=005105043\u0026type=1",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-918",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.1 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,3)"
}
FKIE_CVE-2025-52455
Vulnerability from fkie_nvd - Published: 2025-07-25 19:15 - Updated: 2025-10-29 20:31
Severity
Summary
Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.
References
| URL | Tags | ||
|---|---|---|---|
| security@salesforce.com | https://help.salesforce.com/s/articleView?id=005105043&type=1 | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| tableau | tableau_server | * | |
| tableau | tableau_server | * | |
| tableau | tableau_server | * | |
| linux | linux_kernel | - | |
| microsoft | windows | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*",
"matchCriteriaId": "19541292-4BD4-4BD5-AA68-3836ECC1EBE0",
"versionEndExcluding": "2023.3.19",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*",
"matchCriteriaId": "4AC0483E-569A-497C-BB94-D129FACC17D5",
"versionEndExcluding": "2024.2.12",
"versionStartIncluding": "2024.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:tableau:tableau_server:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1E78711C-389B-4E20-9623-8B0CF6BBCAC8",
"versionEndExcluding": "2025.1.3",
"versionStartIncluding": "2025.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19."
},
{
"lang": "es",
"value": "Server-Side Request Forgery (SSRF) en Salesforce Tableau Server para Windows y Linux (m\u00f3dulos EPS Server) permite la suplantaci\u00f3n de la ubicaci\u00f3n de recursos. Este problema afecta a Tableau Server: versiones anteriores a 2025.1.3, 2024.2.12 y 2023.3.19. "
}
],
"id": "CVE-2025-52455",
"lastModified": "2025-10-29T20:31:58.033",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 1.4,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2025-07-25T19:15:41.263",
"references": [
{
"source": "security@salesforce.com",
"tags": [
"Vendor Advisory"
],
"url": "https://help.salesforce.com/s/articleView?id=005105043\u0026type=1"
}
],
"sourceIdentifier": "security@salesforce.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-918"
}
],
"source": "security@salesforce.com",
"type": "Secondary"
}
]
}
GHSA-5QMX-Q2QR-MCR2
Vulnerability from github – Published: 2025-07-25 21:33 – Updated: 2025-07-25 21:33
VLAI
Details
Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.
Severity
5.3 (Medium)
{
"affected": [],
"aliases": [
"CVE-2025-52455"
],
"database_specific": {
"cwe_ids": [
"CWE-918"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-07-25T19:15:41Z",
"severity": "MODERATE"
},
"details": "Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.",
"id": "GHSA-5qmx-q2qr-mcr2",
"modified": "2025-07-25T21:33:50Z",
"published": "2025-07-25T21:33:50Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52455"
},
{
"type": "WEB",
"url": "https://help.salesforce.com/s/articleView?id=005105043\u0026type=1"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
}
]
}
NCSC-2025-0236
Vulnerability from csaf_ncscnl - Published: 2025-07-28 07:52 - Updated: 2025-07-28 07:52Summary
Kwetsbaarheden verholpen in Salesforce Tableau Server
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten: Salesforce heeft kwetsbaarheden verholpen in Salesforce Tableau Server (Specifiek voor versies lager dan 25.1.3, 2024.2.12, en 2023.3.19).
Interpretaties: De kwetsbaarheden omvatten ongeautoriseerde toegang tot gegevens via door gebruikers gecontroleerde sleutels, autorisatie-bypass, onbeperkte bestandsuploads van gevaarlijke bestandstypen, Absolute Path Traversal, en Server-Side Request Forgery (SSRF). Deze kwetsbaarheden kunnen leiden tot significante datalekken, manipulatie van de interface, en ongeautoriseerde toegang tot interne bronnen, wat de integriteit en vertrouwelijkheid van gegevens in gevaar brengt.
Oplossingen: Salesforce heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans: medium
Schade: high
CWE-639: Authorization Bypass Through User-Controlled Key
CWE-434: Unrestricted Upload of File with Dangerous Type
CWE-918: Server-Side Request Forgery (SSRF)
CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
8.0 (High)
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:semver/<2023.3.19
Salesforce / Tableau Server
|
vers:semver/<2023.3.19 | ||
|
vers:semver/<2024.2.12
Salesforce / Tableau Server
|
vers:semver/<2024.2.12 | ||
|
vers:semver/<2025.1.3
Salesforce / Tableau Server
|
vers:semver/<2025.1.3 | ||
|
vers:unknown/unknown
Salesforce / tableau_server
|
vers:unknown/unknown |
8.1 (High)
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:semver/<2023.3.19
Salesforce / Tableau Server
|
vers:semver/<2023.3.19 | ||
|
vers:semver/<2024.2.12
Salesforce / Tableau Server
|
vers:semver/<2024.2.12 | ||
|
vers:semver/<2025.1.3
Salesforce / Tableau Server
|
vers:semver/<2025.1.3 | ||
|
vers:unknown/unknown
Salesforce / tableau_server
|
vers:unknown/unknown |
8.1 (High)
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:semver/<2023.3.19
Salesforce / Tableau Server
|
vers:semver/<2023.3.19 | ||
|
vers:semver/<2024.2.12
Salesforce / Tableau Server
|
vers:semver/<2024.2.12 | ||
|
vers:semver/<2025.1.3
Salesforce / Tableau Server
|
vers:semver/<2025.1.3 | ||
|
vers:unknown/unknown
Salesforce / tableau_server
|
vers:unknown/unknown |
8.5 (High)
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:semver/<2023.3.19
Salesforce / Tableau Server
|
vers:semver/<2023.3.19 | ||
|
vers:semver/<2024.2.12
Salesforce / Tableau Server
|
vers:semver/<2024.2.12 | ||
|
vers:semver/<2025.1.3
Salesforce / Tableau Server
|
vers:semver/<2025.1.3 | ||
|
vers:unknown/unknown
Salesforce / tableau_server
|
vers:unknown/unknown |
8.5 (High)
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:semver/<2023.3.19
Salesforce / Tableau Server
|
vers:semver/<2023.3.19 | ||
|
vers:semver/<2024.2.12
Salesforce / Tableau Server
|
vers:semver/<2024.2.12 | ||
|
vers:semver/<2025.1.3
Salesforce / Tableau Server
|
vers:semver/<2025.1.3 | ||
|
vers:unknown/unknown
Salesforce / tableau_server
|
vers:unknown/unknown |
8.2 (High)
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:semver/<2023.3.19
Salesforce / Tableau Server
|
vers:semver/<2023.3.19 | ||
|
vers:semver/<2024.2.12
Salesforce / Tableau Server
|
vers:semver/<2024.2.12 | ||
|
vers:semver/<2025.1.3
Salesforce / Tableau Server
|
vers:semver/<2025.1.3 | ||
|
vers:unknown/unknown
Salesforce / tableau_server
|
vers:unknown/unknown |
CWE-918
- Server-Side Request Forgery (SSRF)
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:semver/<2023.3.19
Salesforce / Tableau Server
|
vers:semver/<2023.3.19 | ||
|
vers:semver/<2024.2.12
Salesforce / Tableau Server
|
vers:semver/<2024.2.12 | ||
|
vers:semver/<2025.1.3
Salesforce / Tableau Server
|
vers:semver/<2025.1.3 | ||
|
vers:unknown/unknown
Salesforce / tableau_server
|
vers:unknown/unknown |
CWE-918
- Server-Side Request Forgery (SSRF)
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:semver/<2023.3.19
Salesforce / Tableau Server
|
vers:semver/<2023.3.19 | ||
|
vers:semver/<2024.2.12
Salesforce / Tableau Server
|
vers:semver/<2024.2.12 | ||
|
vers:semver/<2025.1.3
Salesforce / Tableau Server
|
vers:semver/<2025.1.3 | ||
|
vers:unknown/unknown
Salesforce / tableau_server
|
vers:unknown/unknown |
References
9 references
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Salesforce heeft kwetsbaarheden verholpen in Salesforce Tableau Server (Specifiek voor versies lager dan 25.1.3, 2024.2.12, en 2023.3.19).",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden omvatten ongeautoriseerde toegang tot gegevens via door gebruikers gecontroleerde sleutels, autorisatie-bypass, onbeperkte bestandsuploads van gevaarlijke bestandstypen, Absolute Path Traversal, en Server-Side Request Forgery (SSRF). Deze kwetsbaarheden kunnen leiden tot significante datalekken, manipulatie van de interface, en ongeautoriseerde toegang tot interne bronnen, wat de integriteit en vertrouwelijkheid van gegevens in gevaar brengt.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Salesforce heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Authorization Bypass Through User-Controlled Key",
"title": "CWE-639"
},
{
"category": "general",
"text": "Unrestricted Upload of File with Dangerous Type",
"title": "CWE-434"
},
{
"category": "general",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "general",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://help.salesforce.com/s/articleView?id=005105043\u0026type=1"
}
],
"title": "Kwetsbaarheden verholpen in Salesforce Tableau Server",
"tracking": {
"current_release_date": "2025-07-28T07:52:42.872259Z",
"generator": {
"date": "2025-06-05T14:45:00Z",
"engine": {
"name": "V.A.",
"version": "1.1"
}
},
"id": "NCSC-2025-0236",
"initial_release_date": "2025-07-28T07:52:42.872259Z",
"revision_history": [
{
"date": "2025-07-28T07:52:42.872259Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:semver/\u003c2023.3.19",
"product": {
"name": "vers:semver/\u003c2023.3.19",
"product_id": "CSAFPID-3001859"
}
},
{
"category": "product_version_range",
"name": "vers:semver/\u003c2024.2.12",
"product": {
"name": "vers:semver/\u003c2024.2.12",
"product_id": "CSAFPID-3001858"
}
},
{
"category": "product_version_range",
"name": "vers:semver/\u003c2025.1.3",
"product": {
"name": "vers:semver/\u003c2025.1.3",
"product_id": "CSAFPID-3001857"
}
}
],
"category": "product_name",
"name": "Tableau Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/unknown",
"product": {
"name": "vers:unknown/unknown",
"product_id": "CSAFPID-3002339"
}
}
],
"category": "product_name",
"name": "tableau_server"
}
],
"category": "vendor",
"name": "Salesforce"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-52446",
"cwe": {
"id": "CWE-639",
"name": "Authorization Bypass Through User-Controlled Key"
},
"notes": [
{
"category": "other",
"text": "Authorization Bypass Through User-Controlled Key",
"title": "CWE-639"
},
{
"category": "other",
"text": "Authorization Bypass Through User-Controlled Key",
"title": "CWE-639"
},
{
"category": "other",
"text": "Authorization Bypass Through User-Controlled Key",
"title": "CWE-639"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-52446 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-52446.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
}
],
"title": "CVE-2025-52446"
},
{
"cve": "CVE-2025-52447",
"cwe": {
"id": "CWE-639",
"name": "Authorization Bypass Through User-Controlled Key"
},
"notes": [
{
"category": "other",
"text": "Authorization Bypass Through User-Controlled Key",
"title": "CWE-639"
},
{
"category": "other",
"text": "Authorization Bypass Through User-Controlled Key",
"title": "CWE-639"
},
{
"category": "other",
"text": "Authorization Bypass Through User-Controlled Key",
"title": "CWE-639"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-52447 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-52447.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
}
],
"title": "CVE-2025-52447"
},
{
"cve": "CVE-2025-52448",
"cwe": {
"id": "CWE-639",
"name": "Authorization Bypass Through User-Controlled Key"
},
"notes": [
{
"category": "other",
"text": "Authorization Bypass Through User-Controlled Key",
"title": "CWE-639"
},
{
"category": "other",
"text": "Authorization Bypass Through User-Controlled Key",
"title": "CWE-639"
},
{
"category": "other",
"text": "Authorization Bypass Through User-Controlled Key",
"title": "CWE-639"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-52448 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-52448.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
}
],
"title": "CVE-2025-52448"
},
{
"cve": "CVE-2025-52449",
"cwe": {
"id": "CWE-434",
"name": "Unrestricted Upload of File with Dangerous Type"
},
"notes": [
{
"category": "other",
"text": "Unrestricted Upload of File with Dangerous Type",
"title": "CWE-434"
},
{
"category": "other",
"text": "Unrestricted Upload of File with Dangerous Type",
"title": "CWE-434"
},
{
"category": "other",
"text": "Unrestricted Upload of File with Dangerous Type",
"title": "CWE-434"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-52449 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-52449.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
}
],
"title": "CVE-2025-52449"
},
{
"cve": "CVE-2025-52452",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-52452 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-52452.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
}
],
"title": "CVE-2025-52452"
},
{
"cve": "CVE-2025-52453",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"notes": [
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-52453 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-52453.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
}
],
"title": "CVE-2025-52453"
},
{
"cve": "CVE-2025-52454",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"notes": [
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-52454 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-52454.json"
}
],
"title": "CVE-2025-52454"
},
{
"cve": "CVE-2025-52455",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"notes": [
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-3001859",
"CSAFPID-3001858",
"CSAFPID-3001857",
"CSAFPID-3002339"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-52455 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-52455.json"
}
],
"title": "CVE-2025-52455"
}
]
}
WID-SEC-W-2026-0411
Vulnerability from csaf_certbund - Published: 2026-02-12 23:00 - Updated: 2026-02-12 23:00Summary
Tableau Server: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Tableau Server ist eine Datenanalyseplattform.
Angriff: Ein Angreifer kann mehrere Schwachstellen in Tableau Server ausnutzen, um Sicherheitsvorkehrungen zu umgehen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, Daten zu manipulieren, Server-Side Request Forgery-Angriffe durchzuführen und damit möglicherweise weitere Angriffe durchzuführen.
Betroffene Betriebssysteme: - Sonstiges
- Windows
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Tableau Tableau Server <2023.3.19
Tableau / Tableau Server
|
<2023.3.19 | ||
|
Tableau Tableau Server <2024.2.12
Tableau / Tableau Server
|
<2024.2.12 | ||
|
Tableau Tableau Server <2025.1.3
Tableau / Tableau Server
|
<2025.1.3 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Tableau Tableau Server <2023.3.19
Tableau / Tableau Server
|
<2023.3.19 | ||
|
Tableau Tableau Server <2024.2.12
Tableau / Tableau Server
|
<2024.2.12 | ||
|
Tableau Tableau Server <2025.1.3
Tableau / Tableau Server
|
<2025.1.3 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Tableau Tableau Server <2023.3.19
Tableau / Tableau Server
|
<2023.3.19 | ||
|
Tableau Tableau Server <2024.2.12
Tableau / Tableau Server
|
<2024.2.12 | ||
|
Tableau Tableau Server <2025.1.3
Tableau / Tableau Server
|
<2025.1.3 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Tableau Tableau Server <2023.3.19
Tableau / Tableau Server
|
<2023.3.19 | ||
|
Tableau Tableau Server <2024.2.12
Tableau / Tableau Server
|
<2024.2.12 | ||
|
Tableau Tableau Server <2025.1.3
Tableau / Tableau Server
|
<2025.1.3 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Tableau Tableau Server <2023.3.19
Tableau / Tableau Server
|
<2023.3.19 | ||
|
Tableau Tableau Server <2024.2.12
Tableau / Tableau Server
|
<2024.2.12 | ||
|
Tableau Tableau Server <2025.1.3
Tableau / Tableau Server
|
<2025.1.3 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Tableau Tableau Server <2023.3.19
Tableau / Tableau Server
|
<2023.3.19 | ||
|
Tableau Tableau Server <2024.2.12
Tableau / Tableau Server
|
<2024.2.12 | ||
|
Tableau Tableau Server <2025.1.3
Tableau / Tableau Server
|
<2025.1.3 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Tableau Tableau Server <2023.3.19
Tableau / Tableau Server
|
<2023.3.19 | ||
|
Tableau Tableau Server <2024.2.12
Tableau / Tableau Server
|
<2024.2.12 | ||
|
Tableau Tableau Server <2025.1.3
Tableau / Tableau Server
|
<2025.1.3 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Tableau Tableau Server <2023.3.19
Tableau / Tableau Server
|
<2023.3.19 | ||
|
Tableau Tableau Server <2024.2.12
Tableau / Tableau Server
|
<2024.2.12 | ||
|
Tableau Tableau Server <2025.1.3
Tableau / Tableau Server
|
<2025.1.3 |
References
3 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Tableau Server ist eine Datenanalyseplattform.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in Tableau Server ausnutzen, um Sicherheitsvorkehrungen zu umgehen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Daten zu manipulieren, Server-Side Request Forgery-Angriffe durchzuf\u00fchren und damit m\u00f6glicherweise weitere Angriffe durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-0411 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0411.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-0411 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0411"
},
{
"category": "external",
"summary": "Vulnerabilities impacting some versions of Tableau Server vom 2026-02-12",
"url": "https://help.salesforce.com/s/articleView?id=005105043\u0026type=1"
}
],
"source_lang": "en-US",
"title": "Tableau Server: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-02-12T23:00:00.000+00:00",
"generator": {
"date": "2026-02-13T10:52:30.764+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2026-0411",
"initial_release_date": "2026-02-12T23:00:00.000+00:00",
"revision_history": [
{
"date": "2026-02-12T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c2025.1.3",
"product": {
"name": "Tableau Tableau Server \u003c2025.1.3",
"product_id": "T050900"
}
},
{
"category": "product_version",
"name": "2025.1.3",
"product": {
"name": "Tableau Tableau Server 2025.1.3",
"product_id": "T050900-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:tableau:tableau_server:2025.1.3"
}
}
},
{
"category": "product_version_range",
"name": "\u003c2024.2.12",
"product": {
"name": "Tableau Tableau Server \u003c2024.2.12",
"product_id": "T050901"
}
},
{
"category": "product_version",
"name": "2024.2.12",
"product": {
"name": "Tableau Tableau Server 2024.2.12",
"product_id": "T050901-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:tableau:tableau_server:2024.2.12"
}
}
},
{
"category": "product_version_range",
"name": "\u003c2023.3.19",
"product": {
"name": "Tableau Tableau Server \u003c2023.3.19",
"product_id": "T050902"
}
},
{
"category": "product_version",
"name": "2023.3.19",
"product": {
"name": "Tableau Tableau Server 2023.3.19",
"product_id": "T050902-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:tableau:tableau_server:2023.3.19"
}
}
}
],
"category": "product_name",
"name": "Tableau Server"
}
],
"category": "vendor",
"name": "Tableau"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-52446",
"product_status": {
"known_affected": [
"T050902",
"T050901",
"T050900"
]
},
"release_date": "2026-02-12T23:00:00.000+00:00",
"title": "CVE-2025-52446"
},
{
"cve": "CVE-2025-52447",
"product_status": {
"known_affected": [
"T050902",
"T050901",
"T050900"
]
},
"release_date": "2026-02-12T23:00:00.000+00:00",
"title": "CVE-2025-52447"
},
{
"cve": "CVE-2025-52448",
"product_status": {
"known_affected": [
"T050902",
"T050901",
"T050900"
]
},
"release_date": "2026-02-12T23:00:00.000+00:00",
"title": "CVE-2025-52448"
},
{
"cve": "CVE-2025-52449",
"product_status": {
"known_affected": [
"T050902",
"T050901",
"T050900"
]
},
"release_date": "2026-02-12T23:00:00.000+00:00",
"title": "CVE-2025-52449"
},
{
"cve": "CVE-2025-52452",
"product_status": {
"known_affected": [
"T050902",
"T050901",
"T050900"
]
},
"release_date": "2026-02-12T23:00:00.000+00:00",
"title": "CVE-2025-52452"
},
{
"cve": "CVE-2025-52453",
"product_status": {
"known_affected": [
"T050902",
"T050901",
"T050900"
]
},
"release_date": "2026-02-12T23:00:00.000+00:00",
"title": "CVE-2025-52453"
},
{
"cve": "CVE-2025-52454",
"product_status": {
"known_affected": [
"T050902",
"T050901",
"T050900"
]
},
"release_date": "2026-02-12T23:00:00.000+00:00",
"title": "CVE-2025-52454"
},
{
"cve": "CVE-2025-52455",
"product_status": {
"known_affected": [
"T050902",
"T050901",
"T050900"
]
},
"release_date": "2026-02-12T23:00:00.000+00:00",
"title": "CVE-2025-52455"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…