CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-28244

Insecure Permissions vulnerability in the Local Storage in Alteryx Server 2023.1.1.460 allows remote attackers to obtain valid user session tokens from localStorage, leading to account takeover

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.5%

CVSS Severity

CVSS v3 Score 8.8

References

https://alteryx.com
https://gist.github.com/DylanGrl/2771afe86bdd2665b83f28c1ff5c12eb

Products affected by CVE-2025-28244

Alteryx » Alteryx Server » Version: 2023.1.1.460

cpe:2.3:a:alteryx:alteryx_server:2023.1.1.460

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-28244

Products

Pricing

Contact Us