Lucene search

[email protected]CVE-2022-39048

HistoryApr 10, 2023 - 2:15 p.m.

CVE-2022-39048

2023-04-1014:15:07

CWE-79

[email protected]

web.nvd.nist.gov

cve-2022-39048

servicenow

xss

security vulnerability

client-side attacks

csrf tokens

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

5.8 Medium

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.5%

JSON

A XSS vulnerability was identified in the ServiceNow UI page assessment_redirect. To exploit this vulnerability, an attacker would need to persuade an authenticated user to click a maliciously crafted URL. Successful exploitation potentially could be used to conduct various client-side attacks, including, but not limited to, phishing, redirection, theft of CSRF tokens, and use of an authenticated user’s browser or session to attack other systems.

Affected configurations

NVD

Node

servicenowservicenowMatchquebec-

servicenowservicenowMatchquebecpatch_10

servicenowservicenowMatchromepatch_1

servicenowservicenowMatchromepatch_1_hotfix_1

servicenowservicenowMatchromepatch_1_hotfix_1b

servicenowservicenowMatchromepatch_1_hotfix_2

servicenowservicenowMatchromepatch_1_hotfix_3

servicenowservicenowMatchromepatch_10

servicenowservicenowMatchromepatch_10_hotfix_1

servicenowservicenowMatchromepatch_10_hotfix_2

servicenowservicenowMatchromepatch_10_hotfix_2a

servicenowservicenowMatchromepatch_2

servicenowservicenowMatchromepatch_2_hotfix_1

servicenowservicenowMatchromepatch_2_hotfix_2

servicenowservicenowMatchromepatch_3

servicenowservicenowMatchromepatch_3_hotfix_1

servicenowservicenowMatchromepatch_4

servicenowservicenowMatchromepatch_4_hotfix_1

servicenowservicenowMatchromepatch_4_hotfix_1a

servicenowservicenowMatchromepatch_4_hotfix_1b

servicenowservicenowMatchromepatch_5

servicenowservicenowMatchromepatch_5_hotfix_1

servicenowservicenowMatchromepatch_5_hotfix_2

servicenowservicenowMatchromepatch_6

servicenowservicenowMatchromepatch_6_hotfix_1

servicenowservicenowMatchromepatch_6_hotfix_2

servicenowservicenowMatchromepatch_7

servicenowservicenowMatchromepatch_7_hotfix_1

servicenowservicenowMatchromepatch_7a

servicenowservicenowMatchromepatch_7b

servicenowservicenowMatchromepatch_8

servicenowservicenowMatchromepatch_8_hotfix_1

servicenowservicenowMatchromepatch_8_hotfix_2

servicenowservicenowMatchromepatch_9

servicenowservicenowMatchromepatch_9_hotfix_1

servicenowservicenowMatchromepatch_9a

servicenowservicenowMatchromepatch_9b

servicenowservicenowMatchsan_diegopatch_1

servicenowservicenowMatchsan_diegopatch_1_hotfix_1

servicenowservicenowMatchsan_diegopatch_1_hotfix_1a

servicenowservicenowMatchsan_diegopatch_1_hotfix_1b

servicenowservicenowMatchsan_diegopatch_2

servicenowservicenowMatchsan_diegopatch_2_hotfix_1

servicenowservicenowMatchsan_diegopatch_3

servicenowservicenowMatchsan_diegopatch_3_hotfix_1

servicenowservicenowMatchsan_diegopatch_3_hotfix_2

servicenowservicenowMatchsan_diegopatch_3_hotfix_3

servicenowservicenowMatchsan_diegopatch_3_hotfix_4

servicenowservicenowMatchsan_diegopatch_4

servicenowservicenowMatchsan_diegopatch_4a

servicenowservicenowMatchsan_diegopatch_4b

servicenowservicenowMatchsan_diegopatch_6

servicenowservicenowMatchsan_diegopatch_7

servicenowservicenowMatchsan_diegopatch_8

servicenowservicenowMatchtokyo-

servicenowservicenowMatchtokyopatch1

servicenowservicenowMatchutah-

CPENameOperatorVersion
servicenow:servicenowservicenoweqquebec
servicenow:servicenowservicenoweqrome
servicenow:servicenowservicenoweqsan_diego
servicenow:servicenowservicenoweqtokyo
servicenow:servicenowservicenowequtah

CPE	Name	Operator	Version
servicenow:servicenow	servicenow	eq	quebec
servicenow:servicenow	servicenow	eq	rome
servicenow:servicenow	servicenow	eq	san_diego
servicenow:servicenow	servicenow	eq	tokyo
servicenow:servicenow	servicenow	eq	utah

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Now Platform",
    "vendor": "Servicenow",
    "versions": [
      {
        "changes": [
          {
            "at": "Patch 2",
            "status": "unaffected"
          }
        ],
        "lessThan": "Patch 1a",
        "status": "affected",
        "version": "Tokyo",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "Patch 9",
            "status": "unaffected"
          }
        ],
        "lessThan": "Patch 7b",
        "status": "affected",
        "version": "San Diego",
        "versionType": "custom"
      },
      {
        "lessThan": "Patch 10 Hotfix 2b",
        "status": "affected",
        "version": "Rome",
        "versionType": "custom"
      },
      {
        "lessThan": "Patch 10 Hotfix 10b",
        "status": "affected",
        "version": "Quebec",
        "versionType": "custom"
      }
    ]
  }
]

References

support.servicenow.com/

support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB1221892

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

5.8 Medium

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.5%

JSON

Related for CVE-2022-39048

cvelist1 prion1 nuclei1 nvd1