exploitDog

GHSA-29w3-3m4v-phcw

Опубликовано: 22 авг. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.3

Описание

Unrestricted Upload of File with Dangerous Type vulnerability in Salesforce Tableau Server on Windows, Linux (Flow Editor modules) allows Absolute Path Traversal.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.

Unrestricted Upload of File with Dangerous Type vulnerability in Salesforce Tableau Server on Windows, Linux (Flow Editor modules) allows Absolute Path Traversal.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.

Ссылки

EPSS

Процентиль: 18%

0.00056

Низкий

7.3 High

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2025-26497

CVSS3: 7.3

nvd

6 месяцев назад

Unrestricted Upload of File with Dangerous Type vulnerability in Salesforce Tableau Server on Windows, Linux (Flow Editor modules) allows Absolute Path Traversal.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.

EPSS

Процентиль: 18%

0.00056

Низкий

7.3 High

CVSS3

CVE ID

Дефекты

CWE-434