KNOWLEDGE BASE

Security Vulnerability CVE-2021-44790


Published: 08 Dec 2021
Last Modified Date: 04 Jan 2022

Environment

Tableau Products

Resolution

Based on currently available information, we have determined that Tableau products are not affected by CVE-2021-44790 because Tableau products do not use or ship mod_lua.

Cause

A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua scripts). This issue affects Apache HTTP Server 2.4.51 and earlier.
Did this article resolve the issue?