Unrated severityNVD Advisory· Published Nov 4, 2025· Updated Nov 5, 2025
CVE-2025-64320
CVE-2025-64320
Description
Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Code Injection.This issue affects Agentforce Vibes Extension: before 3.2.0.
Affected products
2<3.2.0+ 1 more
- (no CPE)range: <3.2.0
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.