Salesforce Product Security Update Advisory (CVE-2025-9844)

Oct 01 2025

Overview

We have released security updates to fix vulnerabilities in Salesforce products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-9844

Salesforce-CLI version: 2.less than 106.6
* except when downloaded directly from the official site

Resolved Vulnerabilities

Code execution, privilege escalation, and system-level access vulnerability in The Salesforce-CLI installer (sf-x64.exe) (CVE-2025-9844)

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-9844

Salesforce-CLI version: 2.106.6 or later or install from the official site

References

[1] CVE for a vulnerability impacting Salesforce CLI – CVE-2025-9844
https://help.salesforce.com/s/articleView?id=005224301&type=1

Salesforce Product Security Update Advisory (CVE-2025-9844)

Cisco Product Security Update Advisory

Oracle E-Business Suite Security Update Advisory (CVE-2025-61882)

Tags:

Cisco Product Security Update Advisory

Oracle E-Business Suite Security Update Advisory (CVE-2025-61882)