CVE Watchtower

CVE-2025-43699NVD

Description

Client-Side Enforcement of Server-Side Security vulnerability in Salesforce OmniStudio (FlexCards) allows bypass of required permission check.

This impacts OmniStudio: before Spring 2025

Severity Level

MEDIUM (5.3)

Published Date

10/06/2025

Last Modified

18/06/2025

Exploitation Status

????

References

https://help.salesforce.com/s/articleView?id=004980323&type=1