CVE-2026-22584 | THREATINT

Description

Improper Control of Generation of Code ('Code Injection') vulnerability in Salesforce Uni2TS on MacOS, Windows, Linux allows Leverage Executable Code in Non-Executable Files.This issue affects Uni2TS: through 1.2.0.

PUBLISHED Reserved 2026-01-07 | Published 2026-01-09 | Updated 2026-01-12 | Assigner Salesforce

Problem types

CWE-94 Improper Control of Generation of Code ('Code Injection')

Product status

Default status

unaffected

Any version

affected

References

help.salesforce.com/s/articleView?id=005239354&type=1

cve.org (CVE-2026-22584)

nvd.nist.gov (CVE-2026-22584)

Download JSON