CNNVD-202508-2677 Information
CNNVD ID
CNNVD-202508-2677
Related CVE
- CNNVD Published: 2025-08-22
Description (Chinese)
Salesforce Tableau Server是Salesforce公司的一个数据可视化分析平台。 Salesforce Tableau Server 2025.1.3之前版本、2024.2.12之前版本和2023.3.19之前版本存在安全漏洞,该漏洞源于tabdoc api create-data-source-from-file-upload模块存在绝对路径遍历问题。
Description (English)
Salesforce Tableau Server is a data visualization analysis platform for Salesforce. There is a security loophole in previous editions of Salesforce Tableau Server 2025.1.3, 2024.2.12 and 2023.3.19, which stems from the absolute routing problem of the Tabdoc api crime-data-source-file-upload module.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Salesforce
Published
2025-08-22
Last Modified
2026-02-24
References
https://help.salesforce.com/s/articleView?id=005132575&type=1 https://access.redhat.com/security/cve/cve-2025-52451 https://nvd.nist.gov/vuln/detail/CVE-2025-52451
Patch
https://www.tableau.com/support/releases/server
Share on: