Severity: Medium

 

Summary: In Tableau Desktop for Mac, certificates that are configured as "Never Trust" in the keychain are trusted by Tableau Desktop. See this KB article for more information.

 

Vulnerable Versions:

Tableau Desktop 8.2 (through 8.2.15), 8.3 (through 8.3.10), 9.0 (through 9.0.7),9.1.0 (through 9.1.1)

 

Conditions: This vulnerability only affects Tableau Desktop running on Mac OS X.

 

Resolution: The issue can be fixed by upgrading to the following Tableau Desktop versions:

Tableau Desktop: 8.2.16

Tableau Desktop: 8.3.11

Tableau Desktop: 9.1.2