CVE-2022-39048 Cross-Site Scripting (XSS) vulnerability in ServiceNow UI page assessment_redirect

🗓️ 10 Apr 2023 00:00:00Reported by SNType

ServiceNow UI page assessment_redirect XSS vulnerability

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2022-39048	10 Apr 202318:32	–	circl
CNNVD	ServiceNow UI 跨站脚本漏洞	10 Apr 202300:00	–	cnnvd
CVE	CVE-2022-39048	10 Apr 202300:00	–	cve
Nuclei	ServiceNow - Cross-site Scripting	16 Jun 202607:13	–	nuclei
NVD	CVE-2022-39048	10 Apr 202314:15	–	nvd
Prion	Cross site scripting	10 Apr 202314:15	–	prion
Positive Technologies	PT-2023-13678 · Servicenow · Servicenow	10 Apr 202300:00	–	ptsecurity
RedhatCVE	CVE-2022-39048	22 May 202522:09	–	redhatcve
Vulnrichment	CVE-2022-39048 Cross-Site Scripting (XSS) vulnerability in ServiceNow UI page assessment_redirect	10 Apr 202300:00	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "Now Platform",
    "vendor": "Servicenow",
    "versions": [
      {
        "changes": [
          {
            "at": "Patch 2",
            "status": "unaffected"
          }
        ],
        "lessThan": "Patch 1a",
        "status": "affected",
        "version": "Tokyo",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "Patch 9",
            "status": "unaffected"
          }
        ],
        "lessThan": "Patch 7b",
        "status": "affected",
        "version": "San Diego",
        "versionType": "custom"
      },
      {
        "lessThan": "Patch 10 Hotfix 2b",
        "status": "affected",
        "version": "Rome",
        "versionType": "custom"
      },
      {
        "lessThan": "Patch 10 Hotfix 10b",
        "status": "affected",
        "version": "Quebec",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
support	www.support.servicenow.com/kb
support	www.support.servicenow.com/

18 Apr 2023 15:27Current

6Medium risk

Vulners AI Score6

CVSS 3.16.1

EPSS0.01089