all InfoSec news
Are Your ServiceNow ACLs Publicly Exposing Data?
Security Boulevard securityboulevard.com
On October 18, 2023, ServiceNow acknowledged a potential security issue stemming from misconfigurations of Simple List, a widget used simply to retrieve and display data within the Service Portal. This particular vulnerability had been discovered and documented a few days prior by security engineer Aaron Costello through an in-depth blog post. The objective of this […]
The post Are Your ServiceNow ACLs Publicly Exposing Data? appeared first on Obsidian Security.
The post Are Your ServiceNow ACLs Publicly Exposing Data? …
aaron blog blog post data display engineer exposing featured issue list misconfigurations october portal security security advisories security engineer service servicenow simple vulnerability