GCVE - cpe:2.3:a:salesforce:omnistudio:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:salesforce:omnistudio:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Salesforce (`cfdafdea-90cf-5590-ad24-239f205b7d02`)
Product	Omnistudio (`2795caad-5efa-53c8-b663-95ace729dd07`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-43701`	vulnerable	2026-06-03 15:01:17.164721	Details available Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (FlexCards) allows exposure of Custom Settings data. This impacts OmniStudio: before version 254. Published: 2025-06-10T11:21:57.415Z Updated: 2025-06-10T15:14:47.515Z Open on db.gcve.eu Reference links https://help.salesforce.com/s/articleView?id=004980323&type=1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-43700`	vulnerable	2026-06-03 15:01:17.164498	Details available Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (FlexCards) allows exposure of encrypted data. This impacts OmniStudio: before Spring 2025. Published: 2025-06-10T11:12:53.559Z Updated: 2025-06-10T15:15:24.723Z Open on db.gcve.eu Reference links https://help.salesforce.com/s/articleView?id=004980323&type=1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-43699`	vulnerable	2026-06-03 15:01:17.164270	Details available Client-Side Enforcement of Server-Side Security vulnerability in Salesforce OmniStudio (FlexCards) allows bypass of required permission check. This impacts OmniStudio: before Spring 2025 Published: 2025-06-10T11:44:01.720Z Updated: 2025-06-18T13:31:44.330Z Open on db.gcve.eu Reference links https://help.salesforce.com/s/articleView?id=004980323&type=1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-43698`	vulnerable	2026-06-03 15:01:17.164009	Details available Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (FlexCards) allows bypass of field level security controls for Salesforce objects. This impacts OmniStudio: before Spring 2025 Published: 2025-06-10T11:33:08.994Z Updated: 2025-06-11T13:28:41.726Z Open on db.gcve.eu Reference links https://help.salesforce.com/s/articleView?id=004980323&type=1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-43697`	vulnerable	2026-06-03 15:01:17.163674	Details available Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (DataMapper) allows exposure of encrypted data. This impacts OmniStudio: before Spring 2025 Published: 2025-06-10T11:28:58.914Z Updated: 2025-06-11T13:29:20.263Z Open on db.gcve.eu Reference links https://help.salesforce.com/s/articleView?id=004980323&type=1	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.