Weak Password Recovery Mechanism for Forgotten Password in ServiceNow

#VU79390 Weak Password Recovery Mechanism for Forgotten Password in ServiceNow

Published: 2023-08-11

Vulnerability identifier: #VU79390

Vulnerability risk: High

CVSSv3.1: 7.9 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C]

CVE-ID: N/A

CWE-ID: CWE-640

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
ServiceNow
Server applications / Other server solutions

Vendor: ServiceNow

Description

The vulnerability allows a remote attacker to take over users' accounts.

The vulnerability exists due to an unspecified error in the password reset feature. A remote attacker can compromise accounts of other application users.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

ServiceNow: Utah Patch 1 - Utah Patch 1 Hotfix 2, Utah - Utah Patch 3

External links
http://docs.servicenow.com/bundle/utah-release-notes/page/release-notes/quality/utah-patch-3-hf-1.html#d84038e52
http://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB1360218

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Weak password recovery mechanism in ServiceNow Utah