VYPR
Unrated severityNVD Advisory· Published May 5, 2020· Updated Aug 5, 2024

CVE-2019-20768

CVE-2019-20768

Description

ServiceNow IT Service Management Kingston through Patch 14-1, London through Patch 7, and Madrid before patch 4 allow stored XSS via crafted sysparm_item_guid and sys_id parameters in an Incident Request to service_catalog.do.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • ServiceNow/IT Service Managementdescription
  • Range: Kingston through Patch 14-1, London through Patch 7, Madrid before patch 4

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.