49 matches found
CVE-2025-15097
A vulnerability was found in Alteryx Server. Affected by this issue is some unknown functionality of the file /gallery/api/status/. Performing manipulation results in improper authentication. The attack is possible to be carried out remotely. The exploit has been made public and could be used...
CVE-2025-15097
A vulnerability was found in Alteryx Server. Affected by this issue is some unknown functionality of the file /gallery/api/status/. Performing manipulation results in improper authentication. The attack is possible to be carried out remotely. The exploit has been made public and could be used...
CVE-2025-15097 Alteryx Server status improper authentication
A vulnerability was found in Alteryx Server. Affected by this issue is some unknown functionality of the file /gallery/api/status/. Performing manipulation results in improper authentication. The attack is possible to be carried out remotely. The exploit has been made public and could be used...
CVE-2025-15097
CVE-2025-15097 affects Alteryx Server, where an unknown functionality in the file /gallery/api/status/ can be manipulated to bypass authentication. The vulnerability enables remote exploitation and has publicly available exploit guidance. Affected releases include Alteryx Server versions prior to...
EUVD-2025-205409
A vulnerability was found in Alteryx Server. Affected by this issue is some unknown functionality of the file /gallery/api/status/. Performing manipulation results in improper authentication. The attack is possible to be carried out remotely. The exploit has been made public and could be used...
CVE-2025-15097 Alteryx Server status improper authentication
A vulnerability was found in Alteryx Server. Affected by this issue is some unknown functionality of the file /gallery/api/status/. Performing manipulation results in improper authentication. The attack is possible to be carried out remotely. The exploit has been made public and could be used...
Alteryx Server 授权问题漏洞
Alteryx Server is a cloud-hosted or self-hosted application from Alteryx, Inc. It is used to publish, share and execute workflows. An authorization issue vulnerability exists in Alteryx Server that stems from improper authentication in the file /gallery/api/status/, which could lead to a remote...
PT-2025-53435
Name of the Vulnerable Software and Affected Versions Alteryx Server versions prior to 2023.1.1.13.486 Alteryx Server versions prior to 2023.2.1.10.293 Alteryx Server versions prior to 2024.1.1.9.236 Alteryx Server versions prior to 2024.2.1.6.125 Alteryx Server versions prior to 2025.1.1.1.31...
CVE-2025-63291
When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by the caller. The Alteryx server did not check whether the authenticated user had permission to access the specified MongoDB object ID. By specifying...
EUVD-2025-197655
When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by the caller. The Alteryx server did not check whether the authenticated user had permission to access the specified MongoDB object ID. By specifying...
CVE-2025-63291
When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by the caller. The Alteryx server did not check whether the authenticated user had permission to access the specified MongoDB object ID. By specifying...
CVE-2025-63291
When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by the caller. The Alteryx server did not check whether the authenticated user had permission to access the specified MongoDB object ID. By specifying...
Alteryx Server 安全漏洞
Alteryx Server is a cloud-hosted or self-hosted application from Alteryx, Inc. for publishing, sharing and executing workflows. A security vulnerability exists in Alteryx Server versions 2022.1.1.42654 and 2024.1, which stems from a failure to check user permissions and could lead to unauthorized...
CVE-2025-63291
When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by the caller. The Alteryx server did not check whether the authenticated user had permission to access the specified MongoDB object ID. By specifying...
CVE-2025-63291
Summary: CVE-2025-63291 affects Alteryx Server versions 2022.1.1.42654 and 2024.1. Issue: When processing API requests, the server uses MongoDB object IDs to identify data but does not verify that the authenticated user has permission to access the specified object ID, enabling access to records ...
PT-2025-46999
Name of the Vulnerable Software and Affected Versions Alteryx server versions 2022.1.1.42654 and 2024.1 Description The Alteryx server does not properly validate user authorization when processing API requests that utilize MongoDB object IDs to identify data. Specifically, the server fails to...
CVE-2025-63291
When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by the caller. The Alteryx server did not check whether the authenticated user had permission to access the specified MongoDB object ID. By specifying...
EUVD-2025-21049
Malicious code in bioql PyPI...
EUVD-2025-21050
Malicious code in bioql PyPI...
EUVD-2025-21051
Malicious code in bioql PyPI...