Tableau Server 2021.4.3

CPE Details

Tableau Server 2021.4.3
tableau
tableau_server
2021.4.3
2022-06-06
14h34 +00:00
2022-07-21
23h21 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:tableau:tableau_server:2021.4.3:*:*:*:*:*:*:*

Informations

Vendor

tableau

Product

tableau_server

Version

2021.4.3

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-22128 2022-10-16 22h00 +00:00 Tableau discovered a path traversal vulnerability affecting Tableau Server Administration Agent’s internal file transfer service that could allow remote code execution.Tableau only supports product versions for 24 months after release. Older versions have reached their End of Life and are no longer supported. They are also not assessed for potential security issues and do not receive security updates.
9.8
Critical
CVE-2022-22127 2022-05-25 11h56 +00:00 Tableau is aware of a broken access control vulnerability present in Tableau Server affecting Tableau Server customers using Local Identity Store for managing users. The vulnerability allows a malicious site administrator to change passwords for users in different sites hosted on the same Tableau Server, resulting in the potential for unauthorized access to data.Tableau Server versions affected are:2020.4.16, 2021.1.13, 2021.2.10, 2021.3.9, 2021.4.4 and earlierNote: All future releases of Tableau Server will address this security issue. Versions that are no longer supported are not tested and may be vulnerable.
7.2
High