Loading
Generated remediation guidance and an executive summary. No account required.
ServiceNow has released upgrades and patches that address a Reflected Cross-Site scripting (XSS) vulnerability that was identified in the ServiceNow Polaris Layout. This vulnerability would enable an authenticated user to inject arbitrary scripts.
Use CWE-79, Servicenow vendor hub and Servicenow product page to widen CVE-2023-1298 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2024-4879, CVE-2024-5217 and CVE-2022-43684 for nearby disclosures in the same product family.