CVE-2024-4879

⚠ KEVEPSS 94.3%

ServiceNow Improper Input Validation Vulnerability

Added to CISA KEV: 7/29/2024

Description

ServiceNow Utah, Vancouver, and Washington DC Now Platform releases contain a jelly template injection vulnerability in UI macros. An unauthenticated user could exploit this vulnerability to execute code remotely.

Affected packages (0)

No package mapping in OSV.