Browse all 34 CVE security advisories affecting Salesforce. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Salesforce operates as a leading customer relationship management platform, providing cloud-based tools for sales, service, and marketing automation. With thirty-four recorded Common Vulnerabilities and Exposures (CVEs), the platform has historically been susceptible to remote code execution, cross-site scripting, and privilege escalation flaws. These vulnerabilities often stem from complex integrations and third-party app ecosystems, allowing attackers to bypass authentication or access sensitive customer data. Notable incidents have included data leaks resulting from misconfigured permissions and API endpoint exploits. The organization’s extensive use of multi-tenant architecture introduces unique attack surfaces, requiring rigorous isolation between client environments. Security updates are frequently deployed to address these weaknesses, yet the sheer scale of the platform means that configuration errors by administrators remain a significant risk factor. Continuous monitoring and strict adherence to security best practices are essential for mitigating these persistent threats within the Salesforce ecosystem.
This page lists every published CVE security advisory associated with Salesforce. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.