Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Reflected Cross Site Scripting in ServiceNow AI Platform
Vulnerability Description
ServiceNow has addressed a reflected cross-site scripting vulnerability that was identified in the ServiceNow AI Platform. This vulnerability could result in arbitrary code being executed within the browsers of ServiceNow users who click on a specially crafted link. ServiceNow has addressed this vulnerability by deploying a relevant security update to the majority of hosted instances. Relevant security updates also have been provided to ServiceNow self-hosted customers, partners, and hosted customers with unique configurations. Further, the vulnerability is addressed in the listed patches and hot fixes. We recommend customers promptly apply appropriate updates or upgrade if they have not already done so.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
ServiceNow AI Platform 安全漏洞
Vulnerability Description
ServiceNow AI Platform是美国ServiceNow公司的一款AI只能平台。 ServiceNow AI Platform存在安全漏洞,该漏洞源于容易受到反射型跨站脚本攻击,可能导致浏览器中执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A