Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2022-39048

🗓️ 10 Apr 2023 00:00:00Reported by SNType 
cve
 cve🔗 web.nvd.nist.gov👁 72 Views

A XSS vulnerability in ServiceNow UI page assessment_redirect

Related
Detection
Affected
Refs
NVD
Node
servicenowservicenowMatchquebec-
OR
servicenowservicenowMatchquebecpatch_10
OR
servicenowservicenowMatchromepatch_1
OR
servicenowservicenowMatchromepatch_1_hotfix_1
OR
servicenowservicenowMatchromepatch_1_hotfix_1b
OR
servicenowservicenowMatchromepatch_1_hotfix_2
OR
servicenowservicenowMatchromepatch_1_hotfix_3
OR
servicenowservicenowMatchromepatch_10
OR
servicenowservicenowMatchromepatch_10_hotfix_1
OR
servicenowservicenowMatchromepatch_10_hotfix_2
OR
servicenowservicenowMatchromepatch_10_hotfix_2a
OR
servicenowservicenowMatchromepatch_2
OR
servicenowservicenowMatchromepatch_2_hotfix_1
OR
servicenowservicenowMatchromepatch_2_hotfix_2
OR
servicenowservicenowMatchromepatch_3
OR
servicenowservicenowMatchromepatch_3_hotfix_1
OR
servicenowservicenowMatchromepatch_4
OR
servicenowservicenowMatchromepatch_4_hotfix_1
OR
servicenowservicenowMatchromepatch_4_hotfix_1a
OR
servicenowservicenowMatchromepatch_4_hotfix_1b
OR
servicenowservicenowMatchromepatch_5
OR
servicenowservicenowMatchromepatch_5_hotfix_1
OR
servicenowservicenowMatchromepatch_5_hotfix_2
OR
servicenowservicenowMatchromepatch_6
OR
servicenowservicenowMatchromepatch_6_hotfix_1
OR
servicenowservicenowMatchromepatch_6_hotfix_2
OR
servicenowservicenowMatchromepatch_7
OR
servicenowservicenowMatchromepatch_7_hotfix_1
OR
servicenowservicenowMatchromepatch_7a
OR
servicenowservicenowMatchromepatch_7b
OR
servicenowservicenowMatchromepatch_8
OR
servicenowservicenowMatchromepatch_8_hotfix_1
OR
servicenowservicenowMatchromepatch_8_hotfix_2
OR
servicenowservicenowMatchromepatch_9
OR
servicenowservicenowMatchromepatch_9_hotfix_1
OR
servicenowservicenowMatchromepatch_9a
OR
servicenowservicenowMatchromepatch_9b
OR
servicenowservicenowMatchsan_diegopatch_1
OR
servicenowservicenowMatchsan_diegopatch_1_hotfix_1
OR
servicenowservicenowMatchsan_diegopatch_1_hotfix_1a
OR
servicenowservicenowMatchsan_diegopatch_1_hotfix_1b
OR
servicenowservicenowMatchsan_diegopatch_2
OR
servicenowservicenowMatchsan_diegopatch_2_hotfix_1
OR
servicenowservicenowMatchsan_diegopatch_3
OR
servicenowservicenowMatchsan_diegopatch_3_hotfix_1
OR
servicenowservicenowMatchsan_diegopatch_3_hotfix_2
OR
servicenowservicenowMatchsan_diegopatch_3_hotfix_3
OR
servicenowservicenowMatchsan_diegopatch_3_hotfix_4
OR
servicenowservicenowMatchsan_diegopatch_4
OR
servicenowservicenowMatchsan_diegopatch_4a
OR
servicenowservicenowMatchsan_diegopatch_4b
OR
servicenowservicenowMatchsan_diegopatch_6
OR
servicenowservicenowMatchsan_diegopatch_7
OR
servicenowservicenowMatchsan_diegopatch_8
OR
servicenowservicenowMatchtokyo-
OR
servicenowservicenowMatchtokyopatch1
OR
servicenowservicenowMatchutah-
[
  {
    "defaultStatus": "unaffected",
    "product": "Now Platform",
    "vendor": "Servicenow",
    "versions": [
      {
        "changes": [
          {
            "at": "Patch 2",
            "status": "unaffected"
          }
        ],
        "lessThan": "Patch 1a",
        "status": "affected",
        "version": "Tokyo",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "Patch 9",
            "status": "unaffected"
          }
        ],
        "lessThan": "Patch 7b",
        "status": "affected",
        "version": "San Diego",
        "versionType": "custom"
      },
      {
        "lessThan": "Patch 10 Hotfix 2b",
        "status": "affected",
        "version": "Rome",
        "versionType": "custom"
      },
      {
        "lessThan": "Patch 10 Hotfix 10b",
        "status": "affected",
        "version": "Quebec",
        "versionType": "custom"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
07 Feb 2025 21:15Current
5.9Medium risk
Vulners AI Score5.9
CVSS 3.16.1
EPSS0.16978
SSVC
CWE-79
cve-2022-39048servicenowxsssecurity vulnerabilityclient-side attackscsrf tokens
72