Salesforce has experienced several security incidents related to elevated or excessive permissions in the past.
- Summer ’24 Release Permission Issue: In June 2024, a code change during the Summer ’24 Release inadvertently granted authenticated users elevated “view” and “modify” permissions. This misconfiguration allowed users to access or alter data beyond their typical permissions. Salesforce addressed the issue by deploying a patch on June 21, 2024. Reddit
- Public Salesforce Sites Data Exposure: In April 2023, numerous organizations were found leaking private data through their public Salesforce Community websites. The leaks resulted from misconfigured permissions that allowed guest users unauthorized access to sensitive information. Affected entities included banks and healthcare providers. Krebs on Security
- Misconfigured Salesforce Communities: Misconfigurations in Salesforce Communities can be exploited by attackers to access sensitive data. Improperly set permissions may grant unauthorized users access to internal resources, posing significant security risks. Varonis
These incidents underscore the importance of a PAM solution and also reviewing and correctly configuring user permissions to prevent unauthorized data access.
Comments are closed