Salesforce tags 5 CVEs after SaaS security probe uncovers misconfig risks

Joseph K
Jun 11, 2025
1 min read

Salesforce has assigned five CVE identifiers following a security report that uncovered more than 20 configuration weaknesses, some of which exposed customers to unauthorized access and session hijacking.

The vulnerabilities were made public this week after admins were notified of the flaws in May. Aaron Costello, AppOmni chief of SaaS security research who made the findings, said all five CVEs were associated with Flexcards, Data Mappers, and other core components of Salesforce Industries.

https://www.theregister.com/2025/06/11/salesforce_cves_misconfigs/

Salesforce tags 5 CVEs after SaaS security probe uncovers misconfig risks

Comments

Recent Posts

How an AI Agent Wiped Out 2.5 Years of Production Data in Minutes

Caylent Names Valerie Henderson CEO to Spearhead "Agentic" AI Delivery on AWS

Inside Amazon's Leaked Playbook: Defending the $50B OpenAI Deal and Navigating Anthropic Tensions

AWS Plans Massive New Quantum Computing Research Center in Pasadena

Amazon Blames AI-Assisted Deployments for Recent AWS Cloud Outages

Get In Touch

Headquarters

Seoul Office