High severity7.3NVD Advisory· Published Aug 22, 2025· Updated Jun 17, 2026
CVE-2025-26497
CVE-2025-26497
Description
Unrestricted Upload of File with Dangerous Type vulnerability in Salesforce Tableau Server on Windows, Linux (Flow Editor modules) allows Absolute Path Traversal.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.
Affected products
2- Range: <2025.1.3, <2024.2.12, <2023.3.19
- Salesforce/Tableau Serverv5Range: 0
Patches
Vulnerability mechanics
References
1- help.salesforce.com/s/articleViewnvdVendor Advisory
News mentions
0No linked articles in our index yet.