CVE-2025-49191

Name of the Vulnerable Software and Affected Versions The product name cannot be determined.

Description The issue concerns the creation of iFrame widgets and dashboards where linked URLs are vulnerable to code execution. An attacker, if authorized to create new dashboards or iFrame widgets, can embed malicious code, potentially attacking other users who access the dashboard.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.