CRUD and FLS bypass | Clayton Advisor

CRUD and FLS bypass

Overview

CRUD and FLS are authorisation settings that let Admins specify which objects and which fields on an object a user can access and modify. There are cases where developers use Visualforce or Lightning to display data derived from an SObject field in an indirect or processed form. In such scenarios CRUD and FLS should be manually enforced.

Business Impact

Increased risk of data breaches, financial loss, and reputational harm. Eroding customer trust and confidence.

Is your Salesforce solution affected by CRUD and FLS bypass?

Clayton detects anti-patterns and offers automated fix advice to kickstart your Well-Architected journey.

Scan your solution

Resources

Incidence

How common is this issue?

28%

lower

Exposure

How long do organizations remain exposed before fixing the problem?

71%

shorter

Frameworks

Trusted

Secure

Data Security

Sharing and Visibility

A01:2021 – Broken Access Control

Found a mistake?

If you think something is incorrect, missing or misleading please let us know.

Report an error