CVE-2025-64319 | THREATINT

Description

Incorrect Permission Assignment for Critical Resource vulnerability in Salesforce Mulesoft Anypoint Code Builder allows Manipulating Writeable Configuration Files.This issue affects Mulesoft Anypoint Code Builder: before 1.11.6.

PUBLISHED Reserved 2025-10-30 | Published 2025-11-04 | Updated 2025-11-05 | Assigner Salesforce

Problem types

CWE-732 Incorrect Permission Assignment for Critical Resource

Product status

Default status

unaffected

Any version before 1.11.6

affected

References

help.salesforce.com/s/articleView?id=005228032&type=1

cve.org (CVE-2025-64319)

nvd.nist.gov (CVE-2025-64319)

Download JSON