Tableau Server Unaffected by Apache Solr 7.4.0 <= 7.7.3 / 8.0.0 <= 8.11.0 RCE

Udgivelsesdato: Sep 17, 2025

Beskrivelse

CVE-2021-44228
Security Scans may indicate an Apache Solr 7.4.0 <= 7.7.3 / 8.0.0 <= 8.11.0 RCE vulnerability in Tableau Server.

Cause

If the version of Apache Solr running on the remote host is at least 7.4.0 through 7.7.3 or 8.0.0 through 8.11.0, Tableau Server software can be flagged for the RCE vulnerability when running a security scan.

Løsning

Tableau Server currently uses Apache Solr 8.10, which may be flagged as vulnerable to Log4J Version 2.14.1/CVE-2021-44228. However, current Tableau Products do not use the default Log4J version 2.14.1 component which is vulnerable to CVE-2021-44228. As Tableau has upgraded its log4j component to a non-vulnerable version, it is not impacted by this vulnerability.

Please ensure all mitigation and upgrade guidance has been followed regarding Apache Log4j2 vulnerability (Log4shell).

For any further concerns regarding this issue, please visit https://security.salesforce.com/contact.

Vidensartikelnummer

001498523

Løste denne artikel dit problem?

Giv os besked, så vi kan forbedre os!

Tableau Server Unaffected by Apache Solr 7.4.0 <= 7.7.3 / 8.0.0 <= 8.11.0 RCE

Cause

General Information

Required Cookies

Functional Cookies

Advertising Cookies

General Information

Required Cookies

Functional Cookies

Advertising Cookies

Cookie List