CNNVD-202507-1521 Information

CNNVD ID

CNNVD-202507-1521

Related CVE

CVE-2025-28244

• CNNVD Published: 2025-07-10

Description (Chinese)

Alteryx Server是Alteryx公司的一个云托管或自托管的应用程序。用于发布、共享和执行工作流。 Alteryx Server 2023.1.1.460版本存在安全漏洞，该漏洞源于本地存储权限不当，可能导致远程攻击者获取有效用户会话令牌。

Description (English)

Alteryx Server is a cloud-based or self-hosted application of Alteryx. For publication, sharing and implementation streams. Alteryx Server 2023.1.1.460 has a security loophole, which stems from inappropriate local storage privileges, which may lead to a remote attacker obtaining a valid user address.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Alteryx

Published

2025-07-10

Last Modified

2026-02-24

References

https://gist.github.com/DylanGrl/2771afe86bdd2665b83f28c1ff5c12eb https://alteryx.com https://nvd.nist.gov/vuln/detail/CVE-2025-28244

Patch

https://help.alteryx.com/current/en/server.html#server-7112146