Tableau Server 2020.4

CPE Details

Tableau Server 2020.4
tableau
tableau_server
2020.4
2021-03-29
15h32 +00:00
2021-04-22
12h51 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:tableau:tableau_server:2020.4:*:*:*:*:*:*:*

Informations

Vendor

tableau

Product

tableau_server

Version

2020.4

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2022-22128 2022-10-16 22h00 +00:00 Tableau discovered a path traversal vulnerability affecting Tableau Server Administration Agent’s internal file transfer service that could allow remote code execution.Tableau only supports product versions for 24 months after release. Older versions have reached their End of Life and are no longer supported. They are also not assessed for potential security issues and do not receive security updates.
9.8
Critique
CVE-2022-22127 2022-05-25 11h56 +00:00 Tableau is aware of a broken access control vulnerability present in Tableau Server affecting Tableau Server customers using Local Identity Store for managing users. The vulnerability allows a malicious site administrator to change passwords for users in different sites hosted on the same Tableau Server, resulting in the potential for unauthorized access to data.Tableau Server versions affected are:2020.4.16, 2021.1.13, 2021.2.10, 2021.3.9, 2021.4.4 and earlierNote: All future releases of Tableau Server will address this security issue. Versions that are no longer supported are not tested and may be vulnerable.
7.2
Haute
CVE-2021-1629 2021-03-26 15h20 +00:00 Tableau Server fails to validate certain URLs that are embedded in emails sent to Tableau Server users.
6.1
Moyen