Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
SalesforceAgentforce Vibes

3 matches found

CVE
CVEadded 2025/11/04 6:33 p.m.6 views

CVE-2025-64322

CVE-2025-64322 affects Salesforce Agentforce Vibes Extension. The vulnerability is described as an incorrect permission assignment for a critical resource that allows manipulation of writable configuration files. Impact is limited to extensions before affected versions (per sources: before 3.3.0;...

5.3CVSS6.6AI score0.00043EPSS
CVE
CVEadded 2025/11/04 6:27 p.m.4 views

CVE-2025-64320

The vulnerability CVE-2025-64320 affects Salesforce Agentforce Vibes Extension prior to 3.2.0. The issue arises from improper neutralization of inputs used for LLM prompting, which can enable code injection via crafted prompts. Affected component: Agentforce Vibes Extension (client-side extension...

6.5CVSS6.6AI score0.00047EPSS
CVE
CVEadded 2025/11/04 6:30 p.m.4 views

CVE-2025-64321

CVE-2025-64321 concerns Salesforce Agentforce Vibes Extension with improper neutralization of input used for LLM prompting, enabling manipulation of writable configuration files. Affected versions are before 3.3.0 (also noted as before 3.2.0 in some sources). The vulnerability is tied to how prom...

5.3CVSS6.5AI score0.00037EPSS