EUVD-2023-23488

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Cross-Site Scripting vulnerabilities in ServiceNow records allow script injection by authenticated attackers.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2023-1209	23 May 202320:26	–	circl
CNNVD	ServiceNow 跨站脚本漏洞	23 May 202300:00	–	cnnvd
CVE	CVE-2023-1209	23 May 202316:41	–	cve
Cvelist	CVE-2023-1209	23 May 202316:41	–	cvelist
NVD	CVE-2023-1209	23 May 202317:15	–	nvd
OSV	CVE-2023-1209	23 May 202317:15	–	osv
Prion	Cross site scripting	23 May 202317:15	–	prion
Positive Technologies	PT-2023-16822 · Servicenow · Servicenow	23 May 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-1209	23 May 202502:33	–	redhatcve
Vulnrichment	CVE-2023-1209	23 May 202316:41	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "5edb04b6-a34b-33ab-bda7-4f943674d7e8",
        "vendor": {
          "name": "Servicenow"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "09a18124-b983-33e3-9733-df65bd73c913",
        "product": {
          "name": "ServiceNow Records"
        },
        "product_version": "0 <Rome Patch 10 Hot Fix 4b"
      },
      {
        "id": "2eb5392e-95c8-34a0-b1ad-7a953064d25e",
        "product": {
          "name": "ServiceNow Records"
        },
        "product_version": "0 <Tokyo Patch 5"
      },
      {
        "id": "2f3e3950-3880-3da6-b59e-a4378853ee06",
        "product": {
          "name": "ServiceNow Records"
        },
        "product_version": "0 <Tokyo Patch 4a"
      },
      {
        "id": "3946fbc9-cde8-3d5e-a668-c240aa611bd9",
        "product": {
          "name": "ServiceNow Records"
        },
        "product_version": "0 <San Diego Patch 9a"
      },
      {
        "id": "5f8143c6-ccff-343a-891c-18623ee6ff4b",
        "product": {
          "name": "ServiceNow Records"
        },
        "product_version": "0 <San Diego Patch 10"
      },
      {
        "id": "6016ca00-e91e-3ea6-9738-dc495cd5882b",
        "product": {
          "name": "ServiceNow Records"
        },
        "product_version": "0 <Utah Patch 1"
      }
    ]
  }
]

Source	Link
support	www.support.servicenow.com/kb
linkedin	www.linkedin.com/in/osamay/

03 Oct 2025 20:07Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.14.3 - 5.4

EPSS0.0141

SSVC