• [Important] ADV-2020-022: Open Redirect In Tableau Server error page

    Highest overall severity: Medium Summary: Tableau Server fails to properly validate the final destination URL in a certain error page. Impact: A Tableau Server user that clicks on a malicious link will be redire...
    Tyler Reeves
    last modified by Tyler Reeves
  • [Important] ADV-2020-030: Tableau Desktop Uses Disabled Certificate

    Highest overall severity: Medium Summary: Users on Windows can use Microsoft's Certificate Manager to disable certificate capabilities. For example, users can disable Server Authentication on a certificate in Certi...
    Tyler Reeves
    created by Tyler Reeves
  • [Important] ADV-2020-029: Various Memory Corruption Issues

    Highest overall severity: Medium Summary: Various memory corruption issues exist in Tableau products. Impact: An attacker exploiting this vulnerability may be able to cause a crash. Products and Versions: Tabl...
    Tyler Reeves
    created by Tyler Reeves
  • [Important] ADV-2020-028: Various Memory Corruption Issues

    Highest overall severity: High Summary: Various memory corruption issues exist in Tableau products. Impact: An attacker exploiting this vulnerability may be able to execute arbitrary code or cause a crash. Pro...
    Tyler Reeves
    created by Tyler Reeves
  • [Important] ADV-2020-027: Sensitive Value In Log Files - Tableau API Gateway

    Highest overall severity: Medium Summary: When the Tableau API Gateway service fails to communicate with the Authentication service the full authentication value will be logged to the Tableau API Gateway log file. ...
    Tyler Reeves
    created by Tyler Reeves
  • [Important] ADV-2020-026: SAML Assertions Stored In Repository

    Highest overall severity: Medium Summary: The complete SAML AuthN response assertion is stored in the Postgres repository. Impact: An administrator with access to the repository can attempt to replay the SAML Au...
    Tyler Reeves
    created by Tyler Reeves
  • [Important] ADV-2020-018: Unspecified Memory Corruption

    Highest overall severity: High Summary: Various memory corruption issues exist in Tableau products. Impact: An attacker exploiting this vulnerability may be able to execute arbitrary code or cause a crash. Pro...
    Jason Copenhaver
    last modified by Jason Copenhaver
  • [Important] ADV-2020-025: Job Cancellation Emails Contain An Incorrect Email

    Highest overall severity: High Summary: When a background job is cancelled by a server or site administrator an email is sent. The email contains the email address of the user who cancelled the job. In some cases, ...
    Tyler Reeves
    created by Tyler Reeves
  • [Important] ADV-2020-024: Tableau Server Does Not Invalidate User Sessions When Users Logout

    Highest overall severity: Medium Summary: Tableau Server does not invalidate user sessions when users logout. Impact: An attacker with the old session cookie may be able to use it for certain requests before the...
    Tyler Reeves
    created by Tyler Reeves
  • [Important] ADV-2020-023: Content Permissions Out Of Sync

    Highest overall severity: Medium Summary: In a scenario with locked projects (e.g., the setting “Apply to nested folders” is not selected) the permissions displayed on workbooks may not appear to correl...
    Tyler Reeves
    created by Tyler Reeves
  • [Important] ADV-2020-021: tabcmd Fails To Validate Host Name

    Highest overall severity: Medium Summary: The tabcmd utility included with Tableau Server does not properly validate the host name when establishing a TLS connection. Impact: A Tableau Server instance that prese...
    Tyler Reeves
    created by Tyler Reeves
  • [Important] ADV-2020-020: tabcmd Uses An Insecure XML Parser

    Highest overall severity: High Summary: The tabcmd utility included with Tableau Server uses an insecure XML parser. Impact: Using tabcmd to connect to a malicious Tableau Server host could allow for Denial of S...
    Tyler Reeves
    created by Tyler Reeves
  • [Important] ADV-2020-019: ActiveMQ Password Disclosure in ps Command

    Highest overall severity: Medium Summary: Tableau Server discloses the command to start ActiveMQ server in the output of the ps command. The output includes the password to the SSL keystore. Impact: An attacker ...
    Tyler Reeves
    created by Tyler Reeves
  • [Important] ADV-2020-017: Data-Driven Alerts Missing Access Check

    Highest overall severity: Medium Summary: When a Data Driven Alert triggers, Tableau Server fails to perform an access check on  each user to whom the alert is being sent. Impact: A user that has been added...
    Jason Copenhaver
    created by Jason Copenhaver
  • [Important] ADV-2020-016: Open Redirect In Tableau Server API

    Highest overall severity: Medium Summary: Tableau Server fails to properly validate the final destination URL during certain API calls. Impact: A Tableau Server user that clicks on a malicious link will be redir...
    Jason Copenhaver
    created by Jason Copenhaver
  • [Important] ADV-2020-014: View Specific Permissions Ignored By Dashboard Button

    Highest overall severity: Medium Summary: When a dashboard is configured with a button to go to another sheet, the target sheet permissions are ignored for the current user. This scenario may occur if the workbook ...
    Tyler Reeves
    last modified by Tyler Reeves
  • [Important] ADV-2019-047: Open redirect on embeddedAuthRedirect page

    Highest overall severity: Medium Summary: Tableau Server fails to properly validate the path that is presented on an embedded authentication redirect page.   The following CVEs have been addressed: CVE-2019-...
    Tyler Reeves
    last modified by Tyler Reeves
  • [Important] ADV-2019-038: Sensitive Values in Log Files From Prep Builder and Prep Conductor

    Highest overall severity: Medium   Summary: When using Tableau Prep Builder and Tableau Prep Conductor to connect to published datasources sensitive information is logged to the application log files.   I...
    Tyler Reeves
    last modified by Tyler Reeves
  • [Important] ADV-2020-015: Flows Running In Prep Conductor Can Use Wrong OAuth Credentials

    Highest overall severity: High Summary: In certain scenarios a flow running in Prep Conductor will use the wrong OAuth credentials when authenticating to a data source. Impact: A malicious flow can be constructe...
    Tyler Reeves
    created by Tyler Reeves
  • [Important] ADV-2020-013: Sensitive Information In Tableau Server Logs

    Highest overall severity: Medium Summary: Tableau Server logs the internal secret used to authenticate internal service requests when the logl.level is set to Debug. The log.level is set to Info by default and the ...
    Tyler Reeves
    created by Tyler Reeves