Earlier this week, Tableau Software published a security advisory detailing a security vulnerability affecting Tableau Server. This vulnerability enables a user to impersonate a different user, which could allow them to access sensitive dashboards/data or to perform actions that they normally wouldn’t be able to perform.
Affected versions of Tableau Server include:
- Tableau Server 8.1 through 8.1.20
- Tableau Server 8.2 through 8.2.12
- Tableau Server 8.3 through 8.3.7
- Tableau Server 9.0 through 9.0.3
Fortunately, Tableau has already issued a maintenance release that closes the security gap. If you are running a vulnerable version of Tableau Server, it is recommended to upgrade to the latest version of Tableau Server to resolve the issue. Here at InterWorks, we’ve been busy notifying our clients and upgrading affected servers.
For full details surrounding the vulnerability, you can reference this Knowledge Base article.
If you have any questions regarding the vulnerability or would like assistance in addressing it, please don’t hesitate to reach out to us directly.
If you’re interested in receiving notifications like this as well as Tableau Server tips and tricks to put you ahead of the curve, sign up for our Tableau Server Administration Email List.