CVE-2025-52655

Name of the Vulnerable Software and Affected Versions HCL MyXalytics version 6.6

Description The software contains a flaw related to the inclusion of functionality from an untrusted control sphere. Specifically, the application allows loading third-party scripts without proper integrity checks or validation. This can enable external code to run within the application's context, potentially leading to data exposure.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.