What the vulnerability does

01Description

Improper Preservation of Permissions vulnerability in Salesforce OmniStudio (FlexCards) allows exposure of Custom Settings data.  This impacts OmniStudio: before version 254.

Key dates

02Disclosure timeline

June 10, 2025 CVE published
June 10, 2025 Record updated