ServiceNow - HelpTheHelpDesk And The Hackers
February 21, 2021
tldr; ServiceNow had a feature that exposed credentials to hundreds (if not thousands) of their customers ServiceNow instances. These credentials varied from limited permissions, to full administrative access to the ServiceNow instance. The vulnerability was patched on October 8th, 2020. ServiceNow has a feature, that when configured, allows ServiceNow customers...
Read More