URL has been copied successfully!
ServiceNow Flaw CVE-2025-3648 Could Lead to Data Exposure via Misconfigured ACLs
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

ServiceNow Flaw CVE-2025-3648 Could Lead to Data Exposure via Misconfigured ACLs


Tags: , , , , , ,

A high-severity security flaw has been disclosed in ServiceNow’s platform that, if successfully exploited, could result in data exposure and exfiltration.The vulnerability, tracked as CVE-2025-3648 (CVSS score: 8.2), has been described as a case of data inference in Now Platform through conditional access control list (ACL) rules. It has been codenamed Count(er) Strike.”A vulnerability has

First seen on thehackernews.com

Jump to article: thehackernews.com/2025/07/servicenow-flaw-cve-2025-3648-could.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. The 2024 cyberwar playbook: Tricks used by nation-state actors
  2. CISA warns of critical, high-risk flaws in ICS products from four vendors
  3. Cisco’s ISE bugs could allow root-level command execution
  4. March Patch Tuesday warnings: Act fast to plug zero day holes in Windows, VMware