Known Vulnerabilities for products from Salesforce
Listed below are 9 of the newest known vulnerabilities associated with the vendor "Salesforce".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-35178 json | Not Provided | 2026-04-06 | 2026-04-07 | |
| CVE-2026-34951 json | Workbench is a suite of tools for administrators and developers to interact with Salesforce.com organizations via the Force.c... | Not Provided | 2026-04-06 | 2026-04-14 |
| CVE-2025-58809 json | Not Provided | 2025-09-05 | 2026-04-01 | |
| CVE-2025-47455 json | Not Provided | 2025-05-07 | 2026-04-01 | |
| CVE-2025-30953 json | Not Provided | 2025-06-06 | 2026-04-01 | |
| CVE-2025-23657 json | Not Provided | 2025-02-14 | 2026-04-01 | |
| CVE-2023-26136 json | Versions of the package tough-cookie before 4.1.3 are vulnerable to Prototype Pollution due to improper handling of Cookies w... | 9.8 - CRITICAL | 2023-07-01 | 2023-11-07 |
| CVE-2021-1630 json | XML external entity (XXE) vulnerability affecting certain versions of a Mule runtime component that may affect CloudHub, GovC... | 7.5 - HIGH | 2021-08-05 | 2021-08-12 |
| CVE-2021-1628 json | MuleSoft is aware of a XML External Entity (XXE) vulnerability affecting certain versions of a Mule runtime component that ma... | 9.8 - CRITICAL | 2021-03-26 | 2021-04-01 |
| CVE-2021-1627 json | MuleSoft is aware of a Server Side Request Forgery vulnerability affecting certain versions of a Mule runtime component that ... | 9.8 - CRITICAL | 2021-03-26 | 2021-04-01 |
| CVE-2021-1626 json | MuleSoft is aware of a Remote Code Execution vulnerability affecting certain versions of a Mule runtime component that may af... | 9.8 - CRITICAL | 2021-03-26 | 2021-04-01 |
| CVE-2017-15010 json | A ReDoS (regular expression denial of service) flaw was found in the tough-cookie module before 2.3.3 for Node.js. An attacke... | 7.5 - HIGH | 2017-10-04 | 2023-11-07 |
| CVE-2016-1000232 json | NodeJS Tough-Cookie version 2.2.2 contains a Regular Expression Parsing vulnerability in HTTP request Cookie Header parsing t... | 5.3 - MEDIUM | 2018-09-05 | 2018-10-31 |
| CVE-2016-15012 json | ** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in forcedotcom SalesforceMobileSDK... | 9.8 - CRITICAL | 2023-01-07 | 2023-11-07 |
Known software with vulnerabilities from Salesforce
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Salesforce | Tough-cookie | 0.10.0 |