CVE-2025-11449

MEDIUM

ServiceNow AI Platform - XSS

Title source: llm

Description

ServiceNow has addressed a reflected cross-site scripting vulnerability that was identified in the ServiceNow AI Platform. This vulnerability could result in arbitrary code being executed within the browsers of ServiceNow users who click on a specially crafted link. ServiceNow has addressed this vulnerability by deploying a relevant security update to the majority of hosted instances. Relevant security updates also have been provided to ServiceNow self-hosted customers, partners, and hosted customers with unique configuration. Further, the vulnerability is addressed in the listed patches and hot fixes. We recommend customers promptly apply appropriate updates or upgrade if they have not already done so.

Exploits (1)

github SCANNER

by DanielMadsenDK · javascriptpoc

https://github.com/DanielMadsenDK/ServiceNow-CVE-2025-11449-CVE-2025-11450-Mitigation-Script

View Code ZIP pw:eip

References (1)

[Various Sources] https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB2552817

Scores

CVSS v4 5.3

EPSS 0.0006

EPSS Percentile 17.1%

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N

Details

CWE

CWE-79

Status published

Products (10)

ServiceNow/ServiceNow AI Platform < Australia General Availability (GA)

ServiceNow/ServiceNow AI Platform < Washington DC Patch 10 Hot Fix 7b

ServiceNow/ServiceNow AI Platform < Xanadu Patch 10 Hot Fix 1a

ServiceNow/ServiceNow AI Platform < Xanadu Patch 11

ServiceNow/ServiceNow AI Platform < Yokohama Patch 7 Hot Fix 2a

ServiceNow/ServiceNow AI Platform < Yokohama Patch 8

ServiceNow/ServiceNow AI Platform < Yokohama Patch 9

ServiceNow/ServiceNow AI Platform < Zurich Patch 1 Hot Fix 1a

ServiceNow/ServiceNow AI Platform < Zurich Patch 2

ServiceNow/ServiceNow AI Platform < Zurich Patch 3

Published Oct 10, 2025

Tracked Since Feb 18, 2026