Cybersecurity researchers identified over 20 configuration risks within Salesforce Industry Cloud, posing threats to sensitive data. Salesforce has addressed some of these flaws, but others are left for customers to fix, highlighting the importance of proper security setup. #SalesforceIndustryCloud #CVE202543697 #CVE202543698
Keypoints
- More than 20 configuration-related security risks have been found in Salesforce Industry Cloud.
- These vulnerabilities could allow cybercriminals to access encrypted data, session information, and business logic.
- Salesforce has fixed three issues and provided guidance for two, but 16 remain to be fixed by customers.
- Exploiting these flaws can enable bypass of security controls and data extraction.
- A recent SOQL injection vulnerability was disclosed, which could allow attackers to access sensitive user data.
Read More: https://thehackernews.com/2025/06/researchers-uncover-20-configuration.html