CNNVD-202511-1737 Information

CNNVD ID

CNNVD-202511-1737

Related CVE

CVE-2025-63291

• CNNVD Published: 2025-11-14

Description (Chinese)

Alteryx Server是Alteryx公司的一个云托管或自托管的应用程序。用于发布、共享和执行工作流。 Alteryx Server 2022.1.1.42654版本和2024.1版本存在安全漏洞，该漏洞源于未检查用户权限，可能导致未经授权访问其他用户的记录。

Description (English)

Alteryx Server is a cloud-based or self-hosted application of Alteryx. For publication, sharing and implementation streams. Alteryx Server 2022.1.1.42654 and 2024.1 had a security loophole, which stemmed from the failure to check user privileges and could lead to unauthorized access to the records of other users.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Alteryx

Published

2025-11-14

Last Modified

2026-02-24

References

https://help.alteryx.com/current/en/server/api-overview.html https://help.alteryx.com/current/en/server/api-overview/alteryx-server-api-v3/server-api-configuration-and-authorization.html https://aleksazatezalo.medium.com/alteryx-server-idor-advisory-782e3013ee38 https://access.redhat.com/security/cve/cve-2025-63291