GammaGrove

Loading

Several ServiceNow flaws are being linked together to attack companies and organizations

Several ServiceNow flaws are being linked together to attack companies and organizations



Hackers have been seen linking multiple ServiceNow vulnerabilities to target companies and organizations, and steal user login credentials.

Cybersecurity researchers from Resecurity spotted an input validation vulnerability, which allowed threat actors to run remote code execution (RCE) attacks on multiple versions of the Now Platform. The vulnerability is now tracked as CVE-2024-4879, and carries a severity score of 9.3.



Source link

Leave a Reply

Your email address will not be published. Required fields are marked *