What the vulnerability does

01Description

Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (FlexCards) allows bypass of field level security controls for Salesforce objects. This impacts OmniStudio: before Spring 2025

Key dates

02Disclosure timeline

June 10, 2025 CVE published
June 11, 2025 Record updated