Threat Advisory

ServiceNow Sandbox Escape Flaw Lets Unauthenticated Attacker Execute Code

Threat: Vulnerability
Targeted Region: Australia
Targeted Sector: Technology & IT
Criticality: Critical
[subscribe_to_unlock_form]

EXECUTIVE SUMMARY:

A critical remote code execution vulnerability affecting ServiceNow AI Platform versions The vulnerability affects the Brazil, Australia, Zurich, and Yokohama family releases, tracked as CVE-2026-6875 with a CVSS score of 9.5, has been identified in the ServiceNow AI Platform. This flaw allows an unauthenticated attacker to execute code inside the platform under certain circumstances by exploiting the sandbox environment's isolation boundary failure. The vulnerability puts workflow data, credentials, and connected systems at risk due to its severity and lack of authentication requirements, potentially giving an outsider a foothold inside a core business platform. Hosted instances have already received the fix, while self-hosted customers should apply the listed patches now to prevent potential exploitation. The affected versions include specific releases from Brazil, Australia, Zurich, and Yokohama family, with fixed versions such as Brazil EA, Australia Patch 2, and others, as stated in the official ServiceNow security advisory.

RECOMMENDATION:

We recommend you to update ServiceNow AI Platform to given version link: https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB3137947[/subscribe_to_unlock_form]

EXECUTIVE SUMMARY:

A critical remote code execution vulnerability affecting ServiceNow AI Platform versions The vulnerability affects the Brazil, Australia, Zurich, and Yokohama family releases, tracked as CVE-2026-6875 with a CVSS score of 9.5, has been identified in the ServiceNow AI Platform. This flaw allows an unauthenticated attacker to execute code inside the platform under certain circumstances by exploiting the sandbox environment's isolation boundary failure. The vulnerability puts workflow data, credentials, and connected systems at risk due to its severity and lack of authentication requirements, potentially giving an outsider a foothold inside a core business platform. Hosted instances have already received the fix, while self-hosted customers should apply the listed patches now to prevent potential exploitation. The affected versions include specific releases from Brazil, Australia, Zurich, and Yokohama family, with fixed versions such as Brazil EA, Australia Patch 2, and others, as stated in the official ServiceNow security advisory.

RECOMMENDATION:

We recommend you to update ServiceNow AI Platform to given version link: https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB3137947[emaillocker id="1283"]

REFERENCES:

The following reports contain further technical details:

[/emaillocker]
crossmenu