Salesforce Vulnerability Management Program Overview (EN)

At Salesforce, trust is our top priority and our #1 company value. As such, we have implemented a rigorous security vulnerability management program and this document summarizes Salesforce’s Vulnerability Management Program to further highlight how Salesforce rapidly identifies, assesses, and remediates vulnerabilities across all of our products and services.

ファイル

ダウンロード可能なバージョン

報告開始日	報告終了日	最終更新日	ノート	アクション
2025-03-25	-	2025-03-25	-	ログインしてダウンロード

対象サービス

このドキュメントに関連するサービス

Einstein Platform

Sales Cloud Einstein、Pardot Einstein、Salesforce Inbox、Einstein Engagement Scoring、Einstein Vision and Language Services、Einstein Bots、Service Cloud Einstein、Einstein Prediction Builder、およびEinstein Act

B2C Commerce / Commerce Cloud (First Party)

Applicable to the services branded as B2C Commerce/Commerce Cloud on First Party Data Centers

B2C Commerce / Commerce Cloud (Hyperforce)

Applicable to the services branded as B2C Commerce/Commerce Cloud on Hyperforce

Data Cloud

Applicable to the services branded as Data Cloud, Customer Data Cloud (aka Salesforce Data Cloud), or Customer Data Platform (formerly branded as Salesforce CDP).

General (not service specific)

Applicable to Salesforce as an entity without the context of a specific service (Corporate Services)

Heroku

Herokuのブランド名が付されたサービスに適用できます。

Marketing Cloud Account Engagement

Marketing Cloud Account Engagement （旧Pardot）のブランド名が付されたサービスに適用されます。

Marketing Cloud - Advertising

Applicable to the services branded as Marketing Cloud - Advertising

Marketing Cloud - Engagement (First Party)

Applicable to the services branded as Marketing Cloud - Engagement

Marketing Cloud - Engagement (Hyperforce)

Applicable to the services branded as Marketing Cloud - Engagement

Marketing Cloud Growth Edition and Marketing Cloud Advanced Edition

Applicable to the services branded as Marketing Cloud Growth Edition and Marketing Cloud Advanced Edition

Marketing Cloud - Intelligence

Applicable to the services branded as Marketing Cloud - Intelligence

Marketing Cloud - Personalization

Applicable to the services branded as Marketing Cloud - Personalization

MuleSoft

MuleSoftまたはAnypointプラットフォームのブランド名が付されたサービス（"MuleSoft Services"）に適用されます。

MuleSoft Government Cloud

Applicable only to the services branded as MuleSoft Government Cloud. The MuleSoft Government Cloud is a secure, FedRAMP-compliant deployment environment that enables U.S. Government agencies to use t

Own by Salesforce

Applicable to the services branded as Own by Salesforce (formerly known as OwnCompany Inc.) which include: Backup & Recovery - Automated backups with rapid, stress-free recovery options. Data Securit

Quip

Applicable to the services branded as Quip

Sales Enablement

Applicable to the services branded as Sales Enablement (formerly branded as myTrailhead)

Salesforce Professional Services

Applicable to professional services performed by SFDC, its Affiliates, or its or their respective permitted subcontractors under an SOW or Order Form, including the provision of any Deliverables speci

Salesforce Services (First Party)

Applicable to the core salesforce services branded as B2B Commerce on Lightning Experience, Chatter, Consumer Good Cloud, Customer 360 Audiences (Salesforce UCI Org SPARC), Database.com, Einstein Rela

Salesforce Services (Hyperforce)

Slack

Applicable to the services branded as Slack.

Slack (GovSlack)

Applicable only to the environment branded and sold as GovSlack. GovSlack is a dedicated instance of Slack designed to support key government regulations for processing and storing sensitive data. Wi

Tableau Cloud

Applicable to the services branded as Tableau Cloud