CVE-2026-41947 — Dify before version 1.14.2 contains an authorization bypass vulnerability that allows authenticated editor users to set and enable trace configurations for any application regardless of tenant ownersh — CVE Database · The Intelligence Room