CVE-2025-40890

CVE-2025-40890 is a stored Cross-Site Scripting (XSS) vulnerability in the Dashboards feature of Nozomi Networks Guardian/CMC. The issue stems from improper validation of input parameters, enabling an authenticated, low-privilege user to craft and share a malicious dashboard containing JavaScript...