Cybersecurity researchers have found a critical vulnerability in the Salesforce Agentforce platform, which is utilized for developing AI agents. Named ForcedLeak, this flaw poses a severe risk as it enables attackers to potentially exfiltrate sensitive information from Salesforce’s customer relationship management (CRM) tool. The CVSS score of 9.4 indicates the high severity of this vulnerability, calling for immediate attention and remediation.
The implications of this security breach are significant given the prevalent use of Salesforce CRM by businesses for handling confidential customer data. If exploited, the flaw could lead to unauthorized data access and could compromise customer trust in the platform’s security. Organizations relying on Salesforce must promptly apply the necessary patches to mitigate potential damages and secure their data against malicious actors.
👉 Pročitaj original: The Hacker News
