Please update your Tableau Server to address a vulnerability shared by Tableau on August 1, 2023, which could allow a malicious actor to access your hosted data.
We are advising clients who are administrators to upgrade their Tableau Server to the August 1, 2023 release of whatever major.minor version you’re using from 2021.3 – 2023.1.
- To update your Tableau Server to its latest maintenance release branch click here.
To review logs for potentially malicious activity, search for this string: /vizql/proxy/-/host/-/get/
- LINUX logs: /var/opt/tableau/tableau_server/data/tabsvc/logs/httpd/access.*log
- WINDOWS logs: C:Program FilesTableauTableau Serverdatatabsvclogshttpdaccess.*log
BIG has developed a product to further protect your Servers. Let us know if you’d like to explore Tableau Server Guard.
There is immense value in having a proactive Tableau Server solution that ‘guards’ against predictable and preventable admin pitfalls.
Vulnerabilities that present security risks are only one such occurrence that requires a rapid response.
