Volerion logoVolerion
Volerion logoVolerion

Salesforce Tableau Server Unrestricted File Upload Vulnerability Leading to Remote Code Execution

Vulnerability

A vulnerability allowing unrestricted upload of files with dangerous types has been identified in Salesforce Tableau Server. This issue is present in versions prior to 2025.1.3, prior to 2024.2.12, and prior to 2023.3.19, on both Windows and Linux platforms, specifically within Extensible Protocol Service modules. The vulnerability allows for alternative execution due to deceptive filenames, leading to remote code execution.

Impact

Exploitation of this vulnerability allows for remote code execution on the server.

Remediation

Users are advised to update Tableau Server to the latest supported Maintenance Release in their branch, available on the Tableau Server Maintenance Release page. Additionally, customers with a Trino driver installed should update to the latest version. Those running an unsupported version of Tableau Server are recommended to upgrade to a compatible supported version.

Added: Jul 25, 2025, 7:57 PM
Updated: Jul 25, 2025, 9:00 PM

Vulnerability Rating

Custom Algorithm
spread
5.0
impact
10.0
exploitability
7.4
remediation
7.7
relevance
0.3
threat
0.0
urgency
2.9
incentive
5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.