CNNVD-202511-138 Information
Nov 04, 2025
cve
CNNVD ID
CNNVD-202511-138
Related CVE
- CNNVD Published: 2025-11-04
Description (Chinese)
Salesforce Agentforce Vibes Extension是美国Salesforce公司的一个AI编码代理扩展。 Salesforce Agentforce Vibes Extension 3.2.0之前版本存在安全漏洞,该漏洞源于LLM提示输入中和不当,可能导致可写配置文件被操纵。
Description (English)
Salesforce Agentforce Vibes Extension is an AI-coded agent for Salesforce in the United States. There was a security loophole in the previous version of Salesforce Agentforce Vibes Extension 3.2.0 which originated from the inappropriate input of LLM alerts, which could lead to the manipulation of the writingable configuration file.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
Salesforce
Published
2025-11-04
Last Modified
2026-02-24
References
https://help.salesforce.com/s/articleView?id=005228032&type=1
Patch
https://help.salesforce.com/s/articleView?id=005228032&type=1
Share on: