Synced 16 Jun 2026 15:24 UTC Account
← All products

CVE-2024-4879

CRITICAL severity · CVSS 9.8 · CWE-1287 · actively exploited (CISA KEV)
9.8CVSS CRITICAL exploited
Actively exploited in the wild (CISA Known Exploited Vulnerabilities). Added to KEV 2024-07-29. US federal agencies must patch by 2024-08-19.

Summary

ServiceNow has addressed an input validation vulnerability that was identified in Vancouver and Washington DC Now Platform releases. This vulnerability could enable an unauthenticated user to remotely execute code within the context of the Now Platform. ServiceNow applied an update to hosted instances, and ServiceNow released the update to our partners and self-hosted customers. Listed below are the patches and hot fixes that address the vulnerability. If you have not done so already, we recommend applying security patches relevant to your instance as soon as possible.

Impact & exploitability

Attack vectorNetwork
Attack complexityLow
Privileges requiredNone
User interactionNone
Confidentiality impactHigh
Integrity impactHigh
Availability impactHigh
Exploit probability (EPSS)100%

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products we track (1)

ServiceNow

Recommendation

This vulnerability is being actively exploited in the wild — patch affected products urgently. Open any affected product above for its exact safe version.

Additional information