CVE-2026-22585

CVE-2026-22585 corresponds to a vulnerability in Salesforce Marketing Cloud Engagement (CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, View As Webpage) where a broken or risky cryptographic algorithm enables Web Services Protocol Manipulation. The Red Hat, CIR...

CVE-2026-22582

CVE-2026-22582 concerns Salesforce Marketing Cloud Engagement, specifically the MicrositeUrl module. The issue is described as Improper Neutralization of Argument Delimiters in a Command (Argument Injection) that enables Web Services Protocol Manipulation. Public sources indicate the affected sco...

CVE-2026-22583

Salesforce Marketing Cloud Engagement (CloudPagesUrl module) is affected by CVE-2026-22583 due to improper neutralization of argument delimiters, enabling potential argument injection and Web Services Protocol Manipulation. The issue affects Marketing Cloud Engagement versions prior to January 21...

CVE-2026-22586

The CVE-2026-22586 entry concerns Salesforce Marketing Cloud Engagement, specifically modules such as CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, and View As Webpage. The root cause is a hard-coded cryptographic key that enables Web Services Protocol Manipu...