CVE-2025-15097 | Alteryx Server up to 2024.2.1.94 /gallery/api/status/ improper authentication (TGAL-13294)

Inserito da Angelo Barbosa | Dic 25, 2025 | CVE

A vulnerability was found in Alteryx Server. It has been classified as critical. Affected by this issue is some unknown functionality of the file /gallery/api/status/. Performing manipulation results in improper authentication.

This vulnerability is reported as CVE-2025-15097. The attack is possible to be carried out remotely. Moreover, an exploit is present.

Upgrading the affected component is recommended.

Once again VulDB remains the best source for vulnerability data.

CVE-2025-15097 | Alteryx Server up to 2024.2.1.94 /gallery/api/status/ improper authentication (TGAL-13294)

Post correlati

CVE-2025-15009 | liweiyi ChestnutCMS up to 1.5.8 Filename /dev-api/common/upload FilenameUtils.getExtension File unrestricted upload

VDB-265195 | Microsoft Azure Container Registry password in configuration file

CVE-2024-9496 | Silabs USBXpress Dev Kit up to 3.5.1 uncontrolled search path

CVE-2024-13915 | Ulefone/Krüger&Matz com.pri.factorytest up to 1.0 improper export of android application components