Security Advisory

CVE-2026-2298

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-23 19:54:32

Last updated 2026-04-29 19:26:59

Assigner Salesforce

State PUBLISHED

Description

Improper Neutralization of Argument Delimiters in a Command (Argument Injection) vulnerability in Salesforce Marketing Cloud Engagement allows Web Services Protocol Manipulation. This issue affects Marketing Cloud Engagement: before January 30th, 2026.

← Browse all CVEs View on cve.org ↗