Approved changes feed: RSS · Atom

cpe:2.3:a:servicenow:servicenow:jakarta:p6:*:*:*:*:*:*

part: a version: jakarta update: p6

VendorServicenow (0282357a-abe6-5eb0-ac66-0fd9d8780053)
ProductServicenow (b472b3bb-bc45-5baa-a24a-5e671525af9a)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:gitlab/gitlab-com/servicenow purl2cpe 2026-06-01 10:14:20.127022

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2018-7748 vulnerable 2026-06-08 05:12:04.050661 Details available
report_viewer.do in ServiceNow Release Jakarta Patch 8 and earlier allows remote attackers to execute arbitrary code via '${xyz}' Glide Scripting Injection in the sysparm_media parameter.
Published: 2018-08-03T18:00:00.000Z
Updated: 2024-08-05T06:37:59.470Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.