Approved changes feed: RSS · Atom

cpe:2.3:a:servicenow:servicenow:san_diego:patch_9a:*:*:*:*:*:*

part: a version: san_diego update: patch_9a

VendorServicenow (0282357a-abe6-5eb0-ac66-0fd9d8780053)
ProductServicenow (b472b3bb-bc45-5baa-a24a-5e671525af9a)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:gitlab/gitlab-com/servicenow purl2cpe 2026-06-01 10:14:20.127158

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-1298 vulnerable 2026-06-08 05:52:34.360392 Details available
MEDIUM (4.3)
ServiceNow has released upgrades and patches that address a Reflected Cross-Site scripting (XSS) vulnerability that was identified in the ServiceNow Polaris Layout. This vulnerability would enable an authenticated user to inject arbitrary scripts.
Published: 2023-07-06T17:13:27.552Z
Updated: 2024-10-21T21:11:09.595Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.