CVE-2025-52449 | Salesforce Tableau Server prior 2023.3.19/2024.2.12/2025.1.3 on Windows/Linux Extensible Protocol Service unrestricted upload

Inserito da Angelo Barbosa | Lug 26, 2025 | CVE

A vulnerability was found in Salesforce Tableau Server on Windows/Linux and classified as critical. Affected by this issue is some unknown functionality of the component Extensible Protocol Service. The manipulation leads to unrestricted upload.

This vulnerability is handled as CVE-2025-52449. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-52449 | Salesforce Tableau Server prior 2023.3.19/2024.2.12/2025.1.3 on Windows/Linux Extensible Protocol Service unrestricted upload

Post correlati

CVE-2025-25426 | yshopmall up to 1.9.0 Image Listing Interface sql injection (Issue 34)

CVE-2025-47651 | Infility Global Plugin up to 2.12.2 on WordPress sql injection

CVE-2022-32753 | IBM Security Verify Directory 10.0.0 inadequate encryption (XFDB-228444)

CVE-2025-25772 | Jspxcms up to 9.5 Request UserController.java cross-site request forgery