Alteryx · Alteryx Server · CVE-2025-15097
**Name of the Vulnerable Software and Affected Versions**
Alteryx Server versions prior to 2023.1.1.13.486
Alteryx Server versions prior to 2023.2.1.10.293
Alteryx Server versions prior to 2024.1.1.9.236
Alteryx Server versions prior to 2024.2.1.6.125
Alteryx Server versions prior to 2025.1.1.1.31
**Description**
A flaw exists in Alteryx Server related to improper authentication. This issue is associated with an unknown functionality within the `/gallery/api/status/` file. Remote manipulation of this functionality can lead to authentication bypass. The exploit for this issue has been publicly disclosed.
**Recommendations**
Upgrade to version 2023.1.1.13.486.
Upgrade to version 2023.2.1.10.293.
Upgrade to version 2024.1.1.9.236.
Upgrade to version 2024.2.1.6.125.
Upgrade to version 2025.1.1.1.31.