Approved changes feed: RSS · Atom

cpe:2.3:a:servicenow:servicenow:jakarta:p2:*:*:*:*:*:*

part: a version: jakarta update: p2

VendorServicenow (0282357a-abe6-5eb0-ac66-0fd9d8780053)
ProductServicenow (b472b3bb-bc45-5baa-a24a-5e671525af9a)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:gitlab/gitlab-com/servicenow purl2cpe 2026-06-01 10:14:20.127014

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-45901 vulnerable 2026-06-08 05:36:49.543421 Details available
The password-reset form in ServiceNow Orlando provides different responses to invalid authentication attempts depending on whether the username exists.
Published: 2022-02-10T13:59:20.000Z
Updated: 2024-08-04T04:54:31.164Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-7748 vulnerable 2026-06-08 05:12:04.047371 Details available
report_viewer.do in ServiceNow Release Jakarta Patch 8 and earlier allows remote attackers to execute arbitrary code via '${xyz}' Glide Scripting Injection in the sysparm_media parameter.
Published: 2018-08-03T18:00:00.000Z
Updated: 2024-08-05T06:37:59.470Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.