CVE-2026-2298
CRITICAL
NVD
CVSS Score
9.4
Severity
CRITICAL
Published
Mar 23, 2026
Vendor
unknown
Description
Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in Salesforce Marketing Cloud Engagement allows Web Services Protocol Manipulation. This issue affects Marketing Cloud Engagement: before January 30th, 2026.