Attacks exploiting critical ServiceNow RCE bugs underway

Identification of the critical arbitrary code execution bugs, tracked as CVE-2024-4879 and CVE-2024-5217, as well as the medium severity flaw, tracked as CVE-2024-5178, has been followed by widespread network scanning for vulnerable instances.

Article Link: Attacks exploiting critical ServiceNow RCE bugs underway | SC Media