CVE-2025-52448 Information

Description

Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows Linux (validate-initial-sql api modules) allows Interface Manipulation (data access to the production database cluster). This issue affects Tableau Server: before 2025.1.3 before 2024.2.12 before 2023.3.19.

Reference

https://help.salesforce.com/s/articleView?id=005105043&type=1

Related CNNVD

CNNVD-202507-3336 (Published: 2025-07-25)