The Oracle NetSuite and SAP SuccessFactors connectors used in Tableau Gallery may be storing the following sensitive data in your logging infrastructure:
- Client ID
- Refresh Token
- Access Tokens
This issue could allow an individual with access to the logs the ability to leverage a user’s credentials to gain access to and extract data from Oracle NetSuite and/or SAP SuccessFactors.