CVE-2026-22585: CWE-327 Use of a Broken or Risky Cryptographic Algorithm in Salesforce Marketing Cloud Engagement
Use of a Broken or Risky Cryptographic Algorithm vulnerability in Salesforce Marketing Cloud Engagement (CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, View As Webpage modules) allows Web Services Protocol Manipulation. This issue affects Marketing Cloud Engagement: before January 21st, 2026.
AI Analysis
Technical Summary
This vulnerability (CVE-2026-22585) in Salesforce Marketing Cloud Engagement arises from the use of a broken or risky cryptographic algorithm (CWE-327). It impacts multiple modules such as CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, and View As Webpage. The flaw enables Web Services Protocol Manipulation, potentially compromising the security of communications and data handled by these modules. The vulnerability affects versions of the service before January 21st, 2026. Salesforce, as the cloud service provider, has released a patch to remediate this issue.
Potential Impact
The vulnerability has a critical CVSS score of 9.8, reflecting high impact on confidentiality, integrity, and availability of the affected service. Exploitation could allow attackers to manipulate web service protocols, potentially leading to unauthorized data access or disruption of service. No known exploits are reported in the wild at this time.
Mitigation Recommendations
Salesforce manages Marketing Cloud Engagement as a cloud service and has released an official patch to address this vulnerability. Customers should ensure their service is updated to the latest version post-January 21st, 2026, as the vendor handles remediation server-side. Check Salesforce advisories for confirmation of patch deployment and no additional action is required beyond applying the vendor's update.
CVE-2026-22585: CWE-327 Use of a Broken or Risky Cryptographic Algorithm in Salesforce Marketing Cloud Engagement
Description
Use of a Broken or Risky Cryptographic Algorithm vulnerability in Salesforce Marketing Cloud Engagement (CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, View As Webpage modules) allows Web Services Protocol Manipulation. This issue affects Marketing Cloud Engagement: before January 21st, 2026.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability (CVE-2026-22585) in Salesforce Marketing Cloud Engagement arises from the use of a broken or risky cryptographic algorithm (CWE-327). It impacts multiple modules such as CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, and View As Webpage. The flaw enables Web Services Protocol Manipulation, potentially compromising the security of communications and data handled by these modules. The vulnerability affects versions of the service before January 21st, 2026. Salesforce, as the cloud service provider, has released a patch to remediate this issue.
Potential Impact
The vulnerability has a critical CVSS score of 9.8, reflecting high impact on confidentiality, integrity, and availability of the affected service. Exploitation could allow attackers to manipulate web service protocols, potentially leading to unauthorized data access or disruption of service. No known exploits are reported in the wild at this time.
Mitigation Recommendations
Salesforce manages Marketing Cloud Engagement as a cloud service and has released an official patch to address this vulnerability. Customers should ensure their service is updated to the latest version post-January 21st, 2026, as the vendor handles remediation server-side. Check Salesforce advisories for confirmation of patch deployment and no additional action is required beyond applying the vendor's update.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- Salesforce
- Date Reserved
- 2026-01-07T19:03:25.721Z
- Cvss Version
- null
- State
- PUBLISHED
- Is Cloud Service
- true
Threat ID: 697417714623b1157c721595
Added to database: 1/24/2026, 12:50:57 AM
Last enriched: 4/30/2026, 1:57:04 AM
Last updated: 5/9/2026, 3:37:57 AM
Views: 106
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.