Unrated severityNVD Advisory· Published Jul 10, 2025· Updated Jul 11, 2025

CVE-2025-28244

Description

Insecure Permissions vulnerability in the Local Storage in Alteryx Server 2023.1.1.460 allows remote attackers to obtain valid user session tokens from localStorage, leading to account takeover

Affected products

Alteryx/Serverdescription
Activepdf/Serverllm-fuzzy
Range: = 2023.1.1.460

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

alteryx.commitre
gist.github.com/DylanGrl/2771afe86bdd2665b83f28c1ff5c12ebmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000