Tableau Server Unaffected by Apache Solr 7.4.0 <= 7.7.3 / 8.0.0 <= 8.11.0 RCE

Date de publication: Sep 17, 2025

Description

CVE-2021-44228
Security Scans may indicate an Apache Solr 7.4.0 <= 7.7.3 / 8.0.0 <= 8.11.0 RCE vulnerability in Tableau Server.

Cause

If the version of Apache Solr running on the remote host is at least 7.4.0 through 7.7.3 or 8.0.0 through 8.11.0, Tableau Server software can be flagged for the RCE vulnerability when running a security scan.

Résolution

Tableau Server currently uses Apache Solr 8.10, which may be flagged as vulnerable to Log4J Version 2.14.1/CVE-2021-44228. However, current Tableau Products do not use the default Log4J version 2.14.1 component which is vulnerable to CVE-2021-44228. As Tableau has upgraded its log4j component to a non-vulnerable version, it is not impacted by this vulnerability.

Please ensure all mitigation and upgrade guidance has been followed regarding Apache Log4j2 vulnerability (Log4shell).

For any further concerns regarding this issue, please visit https://security.salesforce.com/contact.

Numéro d’article de la base de connaissances

001498523

Cet article a-t-il résolu votre problème ?

Dites-nous ce que nous pouvons améliorer !

Tableau Server Unaffected by Apache Solr 7.4.0 <= 7.7.3 / 8.0.0 <= 8.11.0 RCE

Cause

General Information

Required Cookies

Functional Cookies

Advertising Cookies

General Information

Required Cookies

Functional Cookies

Advertising Cookies

Cookie List