CVE-2025-12420 | ServiceNow Now Assist AI Agents/Virtual Agent API unnecessary privileges (KB2587329)

A vulnerability classified as very critical was found in ServiceNow Now Assist AI Agents and Virtual Agent API. Affected by this issue is some unknown functionality. Such manipulation leads to execution with unnecessary privileges.

This vulnerability is referenced as CVE-2025-12420. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More