Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/11/17 1:14 p.m.7 views

CVE-2025-63291

When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by the caller. The Alteryx server did not check whether the authenticated user had permission to access the specified MongoDB object ID. By specifying...

5.4CVSS6.6AI score0.00209EPSS
Exploits1References1
NVD
NVD
added 2025/11/14 7:16 p.m.6 views

CVE-2025-63291

When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by the caller. The Alteryx server did not check whether the authenticated user had permission to access the specified MongoDB object ID. By specifying...

5.4CVSS0.00209EPSS
Exploits1References3
OSV
OSV
added 2025/11/14 7:16 p.m.2 views

CVE-2025-63291

When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by the caller. The Alteryx server did not check whether the authenticated user had permission to access the specified MongoDB object ID. By specifying...

5.4CVSS5.8AI score0.00209EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/11/14 12:0 a.m.10 views

CVE-2025-63291

When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by the caller. The Alteryx server did not check whether the authenticated user had permission to access the specified MongoDB object ID. By specifying...

0.00209EPSS
Exploits1References3
Rows per page
Query Builder