CNNVD-202508-2679 Information

Aug 22, 2025 cve

CNNVD ID

CNNVD-202508-2679

CVE-2025-26496

  • CNNVD Published: 2025-08-22

Description (Chinese)

Salesforce Tableau Server和Salesforce Tableau Desktop都是Salesforce公司的产品。Salesforce Tableau Server是一个数据可视化分析平台。Salesforce Tableau Desktop是一款商业智能软件。 Salesforce Tableau Server和Salesforce Tableau Desktop 2025.1.3之前版本、2024.2.12之前版本和2023.3.19之前版本存在安全漏洞,该漏洞源于类型混淆可能导致本地代码包含。

Description (English)

Salesforce Tableau Server and Salesforce Tableau Desktop are both Salesforce products. Salesforce Tableau Server is a data visualization analysis platform. Salesforce Tableau Desktop is a business intelligence software. There is a security loophole in previous versions of Salesforce Tableau Server and Salesforce Tableau Desktop 2025.1.3, in pre-2024.2.12 and in pre-2023.3.19, which stems from the potential for local code inclusion due to typologies.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Salesforce

Published

2025-08-22

Last Modified

2026-02-24

References

https://www.cve.org/CVERecord?id=CVE-2022-1364 https://help.salesforce.com/s/articleView?id=005132575&type=1 https://access.redhat.com/security/cve/cve-2025-26496 https://nvd.nist.gov/vuln/detail/CVE-2025-26496

Patch

https://www.tableau.com/support/releases/server

Share on: