How severe is CVE-2026-22584?

CVE-2026-22584 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2026-22584

9.8CRITICAL

Improper Control of Generation of Code ('Code Injection') vulnerability in Salesforce Uni2TS on MacOS, Windows, Linux allows Leverage Executable Code in Non-Executable Files.This issue affects Uni2TS:

Publicado: 1/9/2026Actualizado: 1/13/2026

Descripción

Improper Control of Generation of Code ('Code Injection') vulnerability in Salesforce Uni2TS on MacOS, Windows, Linux allows Leverage Executable Code in Non-Executable Files.This issue affects Uni2TS: through 1.2.0.

Análisis IAImpulsado por IA

Referencias

https://help.salesforce.com/s/articleView?id=005239354&type=1