URL has been copied successfully!
ServiceNow Vulnerability Enables Privilege Escalation Without Authentication
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

ServiceNow Vulnerability Enables Privilege Escalation Without Authentication


Tags: , , , , , , ,

A critical privilege escalation vulnerability has been identified in ServiceNow’s AI Platform, posing significant risks to enterprise users worldwide. Tracked as CVE-2025-12420, this security flaw allows unauthenticated attackers to impersonate other users and execute unauthorized operations based on the compromised account’s permissions. Field Value CVE ID CVE-2025-12420 Vulnerability Type Privilege Escalation Affected Product ServiceNow AI Platform […] The post ServiceNow Vulnerability Enables Privilege Escalation Without Authentication appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/servicenow-vulnerability-enables-privilege-escalation/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Treasury Department Breach: A Crucial Reminder for API Security in the Public Sector
  2. Cisco Firewall and VPN Zero Day Attacks: CVE-2025-20333 and CVE-2025-20362
  3. Cybersecurity Snapshot: AI Will Take Center Stage in Cyber in 2026, Google Says, as MITRE Revamps ATTCK Framework
  4. Cybersecurity Snapshot: AI Will Take Center Stage in Cyber in 2026, Google Says, as MITRE Revamps ATTCK Framework