Salesforce Patches CRM Data Exfiltration Vulnerability

Joseph K
Sep 25
1 min read

Salesforce patched a vulnerability involving its Agentforce agentic artificial intelligence tool that would have allowed attackers to steal customer data and leads being stored in the CRM system.

A report from AI security platform vendor Noma Labs details a chain of indirect prompt injection vulnerabilities it discovered and dubbed ForcedLeak. Researchers reported the flaw to the CRM giant on July 28, calculating that it would have a CVSS-equivalent score of 9.4.

https://www.bankinfosecurity.com/salesforce-patches-crm-data-exfiltration-vulnerability-a-29578

Comments

The $35 Billion System Used By Salesforce And The Founders Who Sold To Them

5 days ago

Salesforce Executive Urges Companies to Adapt AI Strategies for Future Relevance

6 days ago

Salesforce India debuts Agentforce Life Sciences to drive customer engagement and alleviate doctor burnout

6 days ago

Facing an Uproar, Salesforce CEO Marc Benioff Showed Why He’s an Effective Leader

6 days ago

Salesforce Dreams Of The Agentic Enterprise

6 days ago

Salesforce Patches CRM Data Exfiltration Vulnerability

Comments

Recent Posts

The $35 Billion System Used By Salesforce And The Founders Who Sold To Them

Salesforce Executive Urges Companies to Adapt AI Strategies for Future Relevance

Salesforce India debuts Agentforce Life Sciences to drive customer engagement and alleviate doctor burnout

Facing an Uproar, Salesforce CEO Marc Benioff Showed Why He’s an Effective Leader

Salesforce Dreams Of The Agentic Enterprise

Search By Tags

Get In Touch

Headquarters

Seoul Office