CVE-2024-5217

⚠ KEVEPSS 94.1%

ServiceNow Incomplete List of Disallowed Inputs Vulnerability

加入 CISA KEV 日:2024/7/29

描述

ServiceNow Washington DC, Vancouver, and earlier Now Platform releases contain an incomplete list of disallowed inputs vulnerability in the GlideExpression script. An unauthenticated user could exploit this vulnerability to execute code remotely.

受影響套件(0)

OSV 沒有提供套件對應。