Servicenow Quietly Fixes Eight-Year-Old Data Exposure Flaw
Servicenow Quietly Fixes Eight-Year-Old Data Exposure Flaw
26 October 2023
ServiceNow has fixed a flaw that allowed unauthenticated attackers to steal sensitive data. The flaw was highlighted by security researcher Aaron Costello, who found that the default configurations of ServiceNow's widgets exposed personal data.