Vulnerability Database

Salesforce Aura Exposure

Salesforce Aura is a UI framework that enables users to create enterprise-level applications with Salesforce. The Lightning Component framework is built on the open-source Aura framework.

The Aura API provides many features, some of which are considered dangerous.

Attackers can retrieve custom object names and retrieve records that may contain sensitive information.

Solution

Ensure that all Salesforce security updates are applied. Consult with best-practices guidelines for Salesforce applications.

References

Ultimate

Enterprise
  • All Tools, Services, and Plans
  • Suitable For Enterprises
  • Single Sign-On Integration, Single Tenant
  • Dedicated Support, Custom Integrations
  • Annual or Monthly, Fixed-cost Billing