CVE-2025-64318

CVE-2025-64318

Vendor Salesforce
Product Mulesoft Anypoint Code Builder
Weakness CWE-1427
Published November 4, 2025
Last update November 11, 2025

CVSS base score

What the vulnerability does

01Description

Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Mulesoft Anypoint Code Builder allows Manipulating Writeable Configuration Files.This issue affects Mulesoft Anypoint Code Builder: before 1.12.1.

Key dates

02Disclosure timeline

November 4, 2025 CVE published
November 11, 2025 Record updated