NVD

Vulnerability Change Records for CVE-2018-7748

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:servicenow:servicenow:jakarta::::::: cpe:2.3:a:servicenow:servicenow:jakarta:p1::::::* cpe:2.3:a:servicenow:servicenow:jakarta:p2::::::* cpe:2.3:a:servicenow:servicenow:jakarta:p3::::::* cpe:2.3:a:servicenow:servicenow:jakarta:p3a::::::* cpe:2.3:a:servicenow:servicenow:jakarta:p3b::::::* cpe:2.3:a:servicenow:servicenow:jakarta:p4::::::* cpe:2.3:a:servicenow:servicenow:jakarta:p5::::::* cpe:2.3:a:servicenow:servicenow:jakarta:p6::::::* cpe:2.3:a:servicenow:servicenow:jakarta:p6a::::::* cpe:2.3:a:servicenow:servicenow:jakarta:p7::::::* cpe:2.3:a:servicenow:servicenow:jakarta:p8::::::*
Added	CVSS V2		(AV:N/AC:L/Au:S/C:P/I:P/A:P)
Added	CVSS V3		AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Added	CWE		CWE-94
Changed	Reference Type	https://telekomsecurity.github.io/2018/07/servicenow-privilege-escalation.html No Types Assigned	https://telekomsecurity.github.io/2018/07/servicenow-privilege-escalation.html Exploit, Third Party Advisory
Changed	Reference Type	https://telekomsecurity.github.io/assets/advisories/20180104_ServiceNow_GlideInjection.txt No Types Assigned	https://telekomsecurity.github.io/assets/advisories/20180104_ServiceNow_GlideInjection.txt Exploit, Third Party Advisory