CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-46886

There exists an open redirect within the response list update functionality of ServiceNow. This allows attackers to redirect users to arbitrary domains when clicking on a URL within a service-now domain.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 25.6%

CVSS Severity

CVSS v3 Score 5.5

References

https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB1219857
https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB1219857

Products affected by CVE-2022-46886

Servicenow » Servicenow » Version: quebec

cpe:2.3:a:servicenow:servicenow:quebec
Servicenow » Servicenow » Version: rome

cpe:2.3:a:servicenow:servicenow:rome
Servicenow » Servicenow » Version: san_diego

cpe:2.3:a:servicenow:servicenow:san_diego
Servicenow » Servicenow » Version: tokyo

cpe:2.3:a:servicenow:servicenow:tokyo

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-46886

Products

Pricing

Contact Us