CVE-2025-43700 – Salesforce OmniStudio FlexCards Data Exposure Permission Vulnerability

June 10, 2025

CVE ID : CVE-2025-43700

Published : June 10, 2025, 12:15 p.m. | 1 hour, 32 minutes ago

Description : Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (FlexCards) allows exposure of encrypted data.

This impacts OmniStudio: before Spring 2025.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4774 – Elementor Premium Addons Stored Cross-Site Scripting Vulnerability

Next Article CVE-2025-43701 – Salesforce OmniStudio FlexCards Information Disclosure Vulnerability

Highlights

CVE-2025-47952 – Traefik Path Traversal Vulnerability

May 30, 2025

CVE ID : CVE-2025-47952

Published : May 30, 2025, 4:15 a.m. | 48 minutes ago

Description : Traefik (pronounced traffic) is an HTTP reverse proxy and load balancer. Prior to versions 2.11.25 and 3.4.1, there is a potential vulnerability in Traefik managing the requests using a PathPrefix, Path or PathRegex matcher. When Traefik is configured to route the requests to a backend using a matcher based on the path, if the URL contains a URL encoded string in its path, it’s possible to target a backend, exposed using another router, by-passing the middlewares chain. This issue has been patched in versions 2.11.25 and 3.4.1.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

This week in AI dev tools: Apple’s Foundations Model framework, Mistral’s first reasoning model, and more (June 13, 2025)

Open Talent platforms emerging to match skilled workers to needs, study finds

Java never goes out of style: Celebrating 30 years of the language

OneDrive for Mac will soon give you more flexible storage options

From The Editor’s Desk — new Windows Central community features, we’d like to hear from you!

New code strings attached to Xbox Game Pass suggests a price increase may be imminent

This could be the versatile laptop accessory I’ve been waiting for — Here’s why it stands out from other portable monitors

Worker Threads in Node.js: A Complete Guide for Multithreading in JavaScript

Worker Threads in Node.js: A Complete Guide for Multithreading in JavaScript

Everybody’s gone lintin’

QAQ-QQ-AI-QUEST

OneDrive for Mac will soon give you more flexible storage options

OneDrive for Mac will soon give you more flexible storage options

From The Editor’s Desk — new Windows Central community features, we’d like to hear from you!

New code strings attached to Xbox Game Pass suggests a price increase may be imminent

CVE-2025-43700 – Salesforce OmniStudio FlexCards Data Exposure Permission Vulnerability

Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion

Grafana Alert: Medium-Severity Flaw (CVE-2025-3415) Exposes DingDing API Keys

New Russian Cyber Threat ‘Laundry Bear’ Hits Western Targets

CVE-2025-48708 – Artifex Ghostscript Argument Injection Vulnerability

D-Spy – explore the D-Bus

CVE-2025-36564 – Dell Encryption Improper Link Resolution Privilege Escalation Vulnerability

CVE-2025-47952 – Traefik Path Traversal Vulnerability

CVE-2025-47897 – Apache HTTP Server Remote Code Execution

CVE-2023-53144 – Linux Kernel erofs LZMA HIGHMEM NULL Pointer Dereference Vulnerability

U.S. Sanctions Funnull for $200M Romance Baiting Scams Tied to Crypto Fraud

CVE-2025-43700 – Salesforce OmniStudio FlexCards Data Exposure Permission Vulnerability

Related Posts