CVE-2024-4879

CRITICAL 9.8

⚠️ CISA KEV

Jelly Template Injection Vulnerability in ServiceNow UI Macros

CVSS Score

9.8

EPSS Score

0.0%

EPSS Percentile

0th

ServiceNow has addressed an input validation vulnerability that was identified in Vancouver and Washington DC Now Platform releases. This vulnerability could enable an unauthenticated user to remotely execute code within the context of the Now Platform. ServiceNow applied an update to hosted instances, and ServiceNow released the update to our partners and self-hosted customers. Listed below are the patches and hot fixes that address the vulnerability. If you have not done so already, we recommend applying security patches relevant to your instance as soon as possible.

CWE	CWE-1287
Vendor	servicenow
Product	now platform
Published	Jul 10, 2024
Last Updated	Oct 21, 2025

⚠️ Actively Exploited — Act Now

Get instant alerts for servicenow now platform

This vulnerability is actively exploited in the wild. Set up free real-time alerts so you're first to know about threats like CVE-2024-4879.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

ServiceNow / Now Platform

0 < Utah Patch 10 Hot Fix 3 0 < Utah Patch 10a Hot Fix 2 0 < Vancouver Patch 6 Hot Fix 2 0 < Vancouver Patch 7 Hot Fix 3b 0 < Vancouver Patch 8 Hot Fix 4 0 < Vancouver Patch 9 0 < Vancouver Patch 10 0 < Washington DC Patch 1 Hot Fix 2b 0 < Washington DC Patch 2 Hot Fix 2 0 < Washington DC Patch 3 Hot Fix 1 0 < Washington DC Patch 4

References

NVD ↗ CVE.org ↗ EPSS Data ↗

support.servicenow.com: https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB1645154 support.servicenow.com: https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB1644293 darkreading.com: https://www.darkreading.com/cloud-security/patchnow-servicenow-critical-rce-bugs-active-exploit cisa.gov: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-4879

Credits

Adam Kues Assetnote Attack Surface Management