VYPR
Unrated severityNVD Advisory· Published Mar 23, 2026· Updated Apr 29, 2026

CVE-2026-2298

CVE-2026-2298

Description

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in Salesforce Marketing Cloud Engagement allows Web Services Protocol Manipulation. This issue affects Marketing Cloud Engagement: before January 30th, 2026.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

1