Servicenow It Service Management — known CVE vulnerabilities
Every CVE whose affected-product data names Servicenow It Service Management, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-8720 — CVSS 5.4 (medium): ServiceNow ITSM 2016-06-02 has XSS via the First Name or Last Name field of My Profile (aka navpage.do), or the Search bar of My Portal…
CVE-2019-20768 — CVSS 5.4 (medium): ServiceNow IT Service Management Kingston through Patch 14-1, London through Patch 7, and Madrid before patch 4 allow stored XSS via…