CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

RedhatCVE•added 2025/11/07 1:46 p.m.•2 views

CVE-2025-64320

Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Code Injection.This issue affects Agentforce Vibes Extension: before 3.2.0...

6.5CVSS7AI score0.00047EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 1:46 p.m.•2 views

CVE-2025-64321

Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Manipulating Writeable Configuration Files.This issue affects Agentforce Vibes Extension: before 3.3.0...

5.3CVSS6.8AI score0.00037EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 1:46 p.m.•1 views

CVE-2025-64322

Incorrect Permission Assignment for Critical Resource vulnerability in Salesforce Agentforce Vibes Extension allows Manipulating Writeable Configuration Files.This issue affects Agentforce Vibes Extension: before 3.3.0...

5.3CVSS7AI score0.00043EPSS

Exploits0References1

NVD•added 2025/11/04 7:17 p.m.•6 views

CVE-2025-64322

5.3CVSS0.00043EPSS

Exploits0References1

OSV•added 2025/11/04 7:17 p.m.•1 views

CVE-2025-64321

5.3CVSS5.8AI score

Exploits0References1

OSV•added 2025/11/04 7:17 p.m.•3 views

CVE-2025-64320

Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Code Injection.This issue affects Agentforce Vibes Extension: before 3.2.0...

6.5CVSS5.8AI score

Exploits0References1

NVD•added 2025/11/04 7:17 p.m.•3 views

CVE-2025-64320

Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Code Injection.This issue affects Agentforce Vibes Extension: before 3.2.0...

6.5CVSS0.00047EPSS

Exploits0References1

OSV•added 2025/11/04 7:17 p.m.•0 views

CVE-2025-64322

5.3CVSS5.8AI score0.00043EPSS

Exploits0References1

Vulnrichment•added 2025/11/04 6:33 p.m.•1 views

CVE-2025-64322

6.6AI score0.00043EPSS

Exploits0References1

Cvelist•added 2025/11/04 6:33 p.m.•4 views

CVE-2025-64322

0.00043EPSS

Exploits0References1

CVE•added 2025/11/04 6:33 p.m.•8 views

CVE-2025-64322

CVE-2025-64322 affects Salesforce Agentforce Vibes Extension. The vulnerability is described as an incorrect permission assignment for a critical resource that allows manipulation of writable configuration files. Impact is limited to extensions before affected versions (per sources: before 3.3.0;...

5.3CVSS6.6AI score0.00043EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/11/04 6:30 p.m.•3 views

CVE-2025-64321

0.00037EPSS

Exploits0References1

CVE•added 2025/11/04 6:30 p.m.•6 views

CVE-2025-64321

CVE-2025-64321 concerns Salesforce Agentforce Vibes Extension with improper neutralization of input used for LLM prompting, enabling manipulation of writable configuration files. Affected versions are before 3.3.0 (also noted as before 3.2.0 in some sources). The vulnerability is tied to how prom...

5.3CVSS6.5AI score0.00037EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/11/04 6:30 p.m.•1 views

CVE-2025-64321

6.5AI score0.00037EPSS

Exploits0References1

Cvelist•added 2025/11/04 6:27 p.m.•4 views

CVE-2025-64320

Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Code Injection.This issue affects Agentforce Vibes Extension: before 3.2.0...

0.00047EPSS

Exploits0References1

CVE•added 2025/11/04 6:27 p.m.•5 views

CVE-2025-64320

The vulnerability CVE-2025-64320 affects Salesforce Agentforce Vibes Extension prior to 3.2.0. The issue arises from improper neutralization of inputs used for LLM prompting, which can enable code injection via crafted prompts. Affected component: Agentforce Vibes Extension (client-side extension...

6.5CVSS6.6AI score0.00047EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/11/04 12:0 a.m.•2 views

PT-2025-45033

Name of the Vulnerable Software and Affected Versions Salesforce Agentforce Vibes Extension versions prior to 3.2.0 Description An issue exists in Salesforce Agentforce Vibes Extension related to improper neutralization of input used for LLM prompting, which can lead to code injection. The issue...

6.5CVSS7.2AI score0.00047EPSS

Exploits0References4

CNNVD•added 2025/11/04 12:0 a.m.•1 views

Salesforce Agentforce Vibes Extension 安全漏洞

Salesforce Agentforce Vibes Extension is an AI-coded agent extension from Salesforce USA. A security vulnerability exists in Salesforce Agentforce Vibes Extension versions prior to 3.2.0 that stems from improper neutralization of LLM prompt inputs, which could lead to manipulation of writable...

5.3CVSS6.5AI score0.00037EPSS

Exploits0References1

CNNVD•added 2025/11/04 12:0 a.m.•1 views

Salesforce Agentforce Vibes Extension 安全漏洞

Salesforce Agentforce Vibes Extension is an AI-coded agent extension from Salesforce, Inc. in the United States. A security vulnerability exists in Salesforce Agentforce Vibes Extension versions prior to 3.2.0 that stems from improper neutralization of LLM prompt inputs, which could lead to code...

6.5CVSS6.9AI score0.00047EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by