Multiple vulnerabilities in ServiceNow

Published: 2023-01-13

Risk	High
Patch available	YES
Number of vulnerabilities	1
CVE-ID	N/A
CWE-ID	CWE-254
Exploitation vector	Network
Public exploit	N/A
Vulnerable software Subscribe	ServiceNow Server applications / Other server solutions
Vendor	ServiceNow

Security Bulletin

This security bulletin contains one high risk vulnerability.

1) Security features bypass

EUVDB-ID: #VU71151

Risk: High

CVSSv3.1: 8.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: N/A

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability details multiple unspecified security issues. A remote attacker can bypass implemented security restrictions. Security issues affect the following components:

Advanced Work Assignment
Agent Workspace
AI Search
Authentication
Configuration Management Database (CMDB)
Configuration Management Database (CMDB)
Customer Service Management
Discovery
Domain Separation
Dynamic Translation
Email Notifications
Field Administration
Health Log Analytics (Family)
HR Service Delivery
Integration Hub
Knowledge Management
MID Server
MS Teams - App Core
NotifyNow
Orchestration
Platform Analytics
IT Business Management
Reporting
Service Creator
Service Mapping
System Localization
Universal Request

Mitigation

Install updates from vendor's website.

Vulnerable software versions

ServiceNow: Tokyo - Tokyo Patch 4 Hotfix 3

External links

http://docs.servicenow.com/bundle/tokyo-release-notes/page/release-notes/quality/tokyo-patch-5-security.html
http://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB1220796

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.