CVE-2025-64321

CVSS 5.3 MEDIUMEPSS 0.2%CWE-1427

In short

A vulnerability in Salesforce Agentforce Vibes Extension before version 3.3.0 allows attackers to manipulate configuration files by injecting malicious prompts that aren't properly validated. This could let an attacker modify settings or behavior of the extension without proper authorization.

Technical detail

The vulnerability exists in the input sanitization layer for LLM prompts within Agentforce Vibes Extension; an attacker can craft specially-formatted prompt input that bypasses neutralization controls to modify writeable configuration files. The attack requires the ability to provide input to the LLM prompt mechanism, and successful exploitation results in unauthorized modification of extension configuration.

Summary generated and translated by AI from the official description.

Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Manipulating Writeable Configuration Files.This issue affects Agentforce Vibes Extension: before 3.3.0.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Salesforce · Agentforce Vibes Extension

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://help.salesforce.com/s/articleView?id=005228032&type=1