CVE-2025-26495 | THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

Description

Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record the Personal Access Token (PAT) into logging repositories.This issue affects Tableau Server: before 2022.1.3, before 2021.4.8, before 2021.3.13, before 2021.2.14, before 2021.1.16, before 2020.4.19.

Reserved 2025-02-11 | Published 2025-02-11 | Updated 2025-03-04 | Assigner Salesforce

Problem types

CWE-312 Cleartext Storage of Sensitive Information

Product status

Default status

unaffected

Any version before 2022.1.3

affected

Any version before 2021.4.8

affected

Any version before 2021.3.13

affected

Any version before 2021.2.14

affected

Any version before 2021.1.16

affected

Any version before 2020.4.19

affected

References

help.salesforce.com/s/articleView?id=000390611&type=1

cve.org (CVE-2025-26495)

nvd.nist.gov (CVE-2025-26495)

Download JSON

https://cve.threatint.com/CVE/CVE-2025-26495

Support options

Helpdesk Chat, Email, Knowledgebase

MonTueWedThuFriSatSun

242526272812345678910111213141516171819202122232425262728293031123456

MonTueWedThuFriSatSun

242526272812345678910111213141516171819202122232425262728293031123456