CVE-2025-64319

Incorrect Permission Assignment for Critical Resource vulnerability in Salesforce Mulesoft Anypoint Code Builder allows Manipulating Writeable Configuration Files.This issue affects Mulesoft Anypoint Code Builder: before 1.12.1...

CVE-2025-64318

Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Mulesoft Anypoint Code Builder allows Manipulating Writeable Configuration Files.This issue affects Mulesoft Anypoint Code Builder: before 1.12.1...

CVE-2025-64319

Incorrect Permission Assignment for Critical Resource vulnerability in Salesforce Mulesoft Anypoint Code Builder allows Manipulating Writeable Configuration Files.This issue affects Mulesoft Anypoint Code Builder: before 1.12.1...

CVE-2025-10875

Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Mulesoft Anypoint Code Builder allows Code Injection.This issue affects Mulesoft Anypoint Code Builder: before 1.11.6...

CVE-2025-10875

Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Mulesoft Anypoint Code Builder allows Code Injection.This issue affects Mulesoft Anypoint Code Builder: before 1.11.6...

CVE-2025-64319

CVE-2025-64319 affects Salesforce Mulesoft Anypoint Code Builder prior to 1.12.1. Root cause: Incorrect permission assignment for a critical resource that enables manipulation of writable configuration files. Impact: potential tampering with configuration files due to overly permissive access. Ex...

CVE-2025-64318

The issue CVE-2025-64318 affects Salesforce Mulesoft Anypoint Code Builder (before 1.12.1). The vulnerability is described as improper neutralization of input used for LLM prompting, enabling manipulation of writable configuration files. The available data indicate an impact on integrity (partial...

CVE-2025-10875

Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Mulesoft Anypoint Code Builder allows Code Injection.This issue affects Mulesoft Anypoint Code Builder: before 1.11.6...

CVE-2025-10875

CVE-2025-10875 affects Salesforce Mulesoft Anypoint Code Builder before 1.11.6. The issue is improper neutralization of input used for LLM prompting, enabling possible code injection via input handling when prompting LLMs. Impact is limited to confidentiality and integrity (LOW), with network att...

Salesforce Mulesoft Anypoint Code Builder 安全漏洞

Salesforce Mulesoft Anypoint Code Builder is an integrated development environment from US-based Salesforce, Inc. A security vulnerability exists in Salesforce Mulesoft Anypoint Code Builder versions prior to 1.11.6, which stems from improper assignment of critical resource permissions and could...