Chaining Three Bugs To Access All Your ServiceNow Data (Live Q&A) Surfacing Security podcast

Artwork

Tech Business Shubham Shah Cybersecurity InfoSec Information Security Attack Surface Management Security

Content provided by Shubham Shah. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Shubham Shah or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ro.player.fm/legal.

Surfacing Security «
Chaining Three Bugs to Access All Your ServiceNow Data (Live Q&A)

1M ago 29:41

Distribuie

MP3•Pagina episodului

Content provided by Shubham Shah. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Shubham Shah or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ro.player.fm/legal.

On May 14th, 2024, we disclosed a chain of vulnerabilities to ServiceNow, resulting in 3 new CVEs. This series of security issues affected all Vancouver and Washington ServiceNow instances (around 42,000 globally), allowing an attacker to execute code on the instance.

In this live Q&A, Assetnote security researcher Adam Kues explains his approach to how he found these vulnerabilities, highlighted in our recent research post. He is joined by hosts, Michael Gianarakis and Shubham Shah.

Congratulations to Adam on being credited with CVE-2024-4879, CVE-2024-5178, and CVE-2024-5217!

To learn more about Assetnote, visit https://www.assetnote.io/.

… continue reading

8 episoade

#Tech #Business #Shubham Shah #Cybersecurity #InfoSec #Information Security #Attack Surface Management #Security

Artwork

Chaining Three Bugs to Access All Your ServiceNow Data (Live Q&A)

Surfacing Security

published 1M ago

Distribuie

MP3•Pagina episodului

Content provided by Shubham Shah. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Shubham Shah or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ro.player.fm/legal.

On May 14th, 2024, we disclosed a chain of vulnerabilities to ServiceNow, resulting in 3 new CVEs. This series of security issues affected all Vancouver and Washington ServiceNow instances (around 42,000 globally), allowing an attacker to execute code on the instance.

In this live Q&A, Assetnote security researcher Adam Kues explains his approach to how he found these vulnerabilities, highlighted in our recent research post. He is joined by hosts, Michael Gianarakis and Shubham Shah.

Congratulations to Adam on being credited with CVE-2024-4879, CVE-2024-5178, and CVE-2024-5217!

To learn more about Assetnote, visit https://www.assetnote.io/.

… continue reading

8 episoade

#Tech #Business #Shubham Shah #Cybersecurity #InfoSec #Information Security #Attack Surface Management #Security

Toate episoadele

×

Bun venit la Player FM!

Player FM scanează web-ul pentru podcast-uri de înaltă calitate pentru a vă putea bucura acum. Este cea mai bună aplicație pentru podcast și funcționează pe Android, iPhone și pe web. Înscrieți-vă pentru a sincroniza abonamentele pe toate dispozitivele.

Ascultă peste 500 de subiecte

Ghid rapid de referință

Podcast-uri de top

Florin Rosoga Podcast

Morning Glory cu Răzvan Exarhu

Epic Show Podcast

UPGRADE 100 Podcasts

România în direct - Europa FM

Deşteptarea - Europa FM

Ajutor/FAQ | Upgrade | Advertise

Arte|Afaceri|Comedie|Economie|Divertisment|Știri|Politică|Religie

Ştiinţă|Fotbal|Sport|Povestiri|Tehnologie|True Crime

Drepturi de autor 2024 | Harta site-ului | Politica de confidenţialitate | Termenii serviciului | | Copyright