CVE-2025-15097

HIGH

Alteryx Server - Auth Bypass

Title source: llm

Description

A vulnerability was found in Alteryx Server. Affected by this issue is some unknown functionality of the file /gallery/api/status/. Performing manipulation results in improper authentication. The attack is possible to be carried out remotely. The exploit has been made public and could be used. Upgrading to version 2023.1.1.13.486, 2023.2.1.10.293, 2024.1.1.9.236, 2024.2.1.6.125 and 2025.1.1.1.31 can resolve this issue. Upgrading the affected component is recommended.

References (6)

[Permissions Required, VDB Entry] https://vuldb.com/?id.338428

[Permissions Required, VDB Entry] https://vuldb.com/?ctiid.338428

[Permissions Required, VDB Entry] https://vuldb.com/?submit.710169

[Various Sources] https://ict-strypes.eu/wp-content/uploads/2025/12/Alteryx-Second-Research.pdf

[Various Sources] https://gist.github.com/apostolovd/f84631eed2f0c0e83e2e174b1480f08c

[Various Sources] https://help.alteryx.com/release-notes/en/release-notes/server-release-notes/server-2025-1-release-notes.html

Scores

CVSS v3 7.3

EPSS 0.0003

EPSS Percentile 9.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

CWE

CWE-287

Status published

Products (19)

Alteryx/Server 2020.2.3.27789

Alteryx/Server 2021.4.2.47895

Alteryx/Server 2022.1.1.30961

Alteryx/Server 2022.1.1.42707

Alteryx/Server 2023.1.1.123

Alteryx/Server 2023.1.1.13.486

Alteryx/Server 2023.1.1.306

Alteryx/Server 2023.2.1.10.293

Alteryx/Server 2023.2.1.51

Alteryx/Server 2024.1.1.136

... and 9 more

Published Dec 26, 2025

Tracked Since Feb 18, 2026