ServiceNow Now Platform Security Update Advisory (CVE-2024-8923)

Nov 04 2024

Overview

An update has been released to address vulnerabilities in ServiceNow Now Platform. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-8923

Xanadu
Washington DC
Vancouver

Resolved Vulnerabilities

Vulnerability that could allow an unauthenticated user to remotely execute code within the context of Now Platform (CVE-2024-8923)

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-8923

Xanadu version: Xanadu GA Release
Washington DC version: Patch 4 Hot Fix 1a
Washington DC version: Patch 5
Vancouver version: Patch 9 Hot Fix 2a
Vancouver version: Patch 10

Referenced Sites

[1] CVE-2024-8923 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-8923

[2] CVE-2024-8923 – Sandbox Escape in Now Platform

https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB1706070

ServiceNow Now Platform Security Update Advisory (CVE-2024-8923)

CyberPanel Security Update Advisory

WordPress LiteSpeed Cache Plugin Security Update Advisory (CVE-2024-50550)

Tags:

CyberPanel Security Update Advisory

WordPress LiteSpeed Cache Plugin Security Update Advisory (CVE-2024-50550)