Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2026/01/12 9:29 p.m.4 views

CVE-2025-12420 Unauthenticated Privilege Escalation in ServiceNow AI Platform

A vulnerability has been identified in the ServiceNow AI Platform that could enable an unauthenticated user to impersonate another user and perform the operations that the impersonated user is entitled to perform. ServiceNow has addressed this vulnerability by deploying a relevant security update...

10CVSS6.6AI score0.4549EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/12 4:6 p.m.7 views

CVE-2025-3089 Broken Access Control in ServiceNow AI Platform

ServiceNow has addressed a Broken Access Control vulnerability that was identified in the ServiceNow AI Platform. This vulnerability could allow a low privileged user to bypass access controls and perform a limited set of actions typically reserved for higher privileged users, potentially leading...

5.3CVSS0.0042EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.5 views

ServiceNow Now Platform 安全漏洞

ServiceNow Now Platform is a cloud-based platform from US-based ServiceNow that uses AI and machine learning to automate and optimize work across the enterprise. A security vulnerability exists in ServiceNow Now Platform that stems from the presence of an HTML injection vulnerability that could...

5.1CVSS7AI score0.00297EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/29 12:0 a.m.5 views

PT-2024-9533 · Servicenow · Servicenow

Name of the Vulnerable Software and Affected Versions: ServiceNow affected versions not specified Description: The issue is related to incorrect code generation management in the Now Platform, which could enable an unauthenticated user to remotely execute code within the context of the Now...

10CVSS7.3AI score0.01107EPSS
Exploits0References18
VulnCheck KEV
VulnCheck KEV
added 2024/07/23 12:0 a.m.2 views

VulnCheck KEV: CVE-2024-4879

ServiceNow Utah, Vancouver, and Washington DC Now Platform releases contain a jelly template injection vulnerability in UI macros. An unauthenticated user could exploit this vulnerability to execute code remotely...

9.8CVSS5.9AI score0.99976EPSS
Exploits8References1
Rows per page
Query Builder