5 matches found
CVE-2025-64320
Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Code Injection.This issue affects Agentforce Vibes Extension: before 3.2.0...
CVE-2025-64321
Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Manipulating Writeable Configuration Files.This issue affects Agentforce Vibes Extension: before 3.3.0...
CVE-2025-64321
Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Manipulating Writeable Configuration Files.This issue affects Agentforce Vibes Extension: before 3.3.0...
CVE-2025-64321
CVE-2025-64321 concerns Salesforce Agentforce Vibes Extension with improper neutralization of input used for LLM prompting, enabling manipulation of writable configuration files. Affected versions are before 3.3.0 (also noted as before 3.2.0 in some sources). The vulnerability is tied to how prom...
CVE-2025-64320
The vulnerability CVE-2025-64320 affects Salesforce Agentforce Vibes Extension prior to 3.2.0. The issue arises from improper neutralization of inputs used for LLM prompting, which can enable code injection via crafted prompts. Affected component: Agentforce Vibes Extension (client-side extension...