Virtual Agent Api
1 CVEs
product
Monthly
ServiceNow AI Platform has a user impersonation vulnerability allowing unauthenticated attackers to impersonate any user and perform their authorized actions. ServiceNow has deployed patches to hosted instances and self-hosted updates are available.
Privilege Escalation
AI / ML
Virtual Agent Api
Now Assist Ai Agents
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-12420
EPSS 0%
CVSS 9.8
CRITICAL
Act Now
ServiceNow AI Platform has a user impersonation vulnerability allowing unauthenticated attackers to impersonate any user and perform their authorized actions. ServiceNow has deployed patches to hosted instances and self-hosted updates are available.
Privilege Escalation
AI / ML
Virtual Agent Api
+1
NVD