CVE-2025-64320

Publication date

2025-11-04 18:27:32

Family

Salesforce

State

PUBLISHED

Description

Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Code Injection.This issue affects Agentforce Vibes Extension: before 3.2.0.