Dynamic Application Security Testing

CVE-2024-4879 Jelly Template Injection on ServiceNow

Description

CVE-2024-4879 is a critical vulnerability in the ServiceNow platform that allows unauthenticated remote attackers to execute arbitrary code within the Now Platform. This is due to a Jelly template injection flaw, which means attackers can inject and execute malicious code by exploiting inadequate input sanitization in Jelly templates.

Outbreak Alert

FortiGuard Labs continue to observe attack attempts targeting the recent ServiceNow Platform vulnerabilities (CVE-2024-4879, CVE-2024-5217, & CVE-2024-5178). When chained together, could lead to Remote Code Execution and potential data breaches with unauthorized system access.

View the full Outbreak Alert Report

References

Version Updates

Date	Version	Status	Detail
2024-11-11	24.30000	New	ServiceNow platform is vulnerable to Jelly template injection due to template injection flaw, allowing attackers to execute arbitrary code within the Now Platform.

ID	105
CVE ID
Category	web
Sub Category	servicenow
Date	Sep 18, 2024
Risk
Tags	ServiceNow RCE Threat Signal
Alias	code execution via ssti
Type	OWASP injection
CVSS	9.8
Author	Rakesh Mali

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Dynamic Application Security Testing

CVE-2024-4879 Jelly Template Injection on ServiceNow

Description

Outbreak Alert

References

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Dynamic Application Security Testing

CVE-2024-4879 Jelly Template Injection on ServiceNow

Description

Outbreak Alert

References

Version Updates

Threat Intelligence
Center