VYPR

Server

by Tableausoftware

CVEs (3)

  • CVE-2020-6939CriNov 23, 2020
    risk 0.64cvss 9.8epss 0.02

    Tableau Server installations configured with Site-Specific SAML that allows the APIs to be used by unauthenticated users. If exploited, this could allow a malicious user to configure Site-Specific SAML settings and could lead to account takeover for users of that site. Tableau…

  • CVE-2020-6938HigJul 8, 2020
    risk 0.49cvss 7.5epss 0.01

    A sensitive information disclosure vulnerability in Tableau Server 10.5, 2018.x, 2019.x, 2020.x released before June 26, 2020, could allow access to sensitive information in log files.

  • CVE-2019-19719MedDec 11, 2019
    risk 0.41cvss 6.1epss 0.22

    Tableau Server 10.3 through 2019.4 on Windows and Linux allows XSS via the embeddedAuthRedirect page.