Vulnerability in Salesforce Agentforce Vibes Extension
CVE-2025-64321
Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Manipulating Writeable Configuration Files.This issue affects Agentforce Vibes Extension: before 3.3.0.
EPSS: 0.000 (11.4th percentile) — read the EPSS interpretation.
Affected products
- Salesforce Agentforce Vibes Extension — versions 0