There is a proper Tableau Security Team as part of Tableau Support that handles things like this. You will need to file an official support ticket and ask that team to go through these with you. When you submit the ticket, please attach a copy of these items needing the attention of the security team. Thank you.
The best bet is to submit a support ticket. If you can supply the scan report, and details on how the scan was run, it will help speed up the investigation. Tableau relies on security best practices and network technologies to ensure the product is secure so a lot of scans will show false positives but the Security team will do their best to provide an explanation of why the vulnerability can not be taken advantage of.
I think you have seen it already but the security hardening checklist covers the majority of concerns Security Hardening Checklist - Tableau
Thanks, John. I forgot to ad that pointer about false readings.
I support the US Federal Government which is one of our largest customers. Every agency uses Tableau is one way or another. Some of the most secure agencies you can think of have tested our solutions and they have passed with flying colors. Tableau has been certified to run on many Intel networks (these are hidden highly secure intelligence related networks).
Usually, customers will ask their Tableau sales team to engage with them to test our solution on their networks and folks like me are enlisted to help.
Thanks Heyward. I will reach out to the support team.
Thanks John. I will reach out to the support team.