Full Report
ServiceNow has disclosed details of a now-patched critical security flaw impacting its ServiceNow AI Platform that could enable an unauthenticated user to impersonate another user and perform arbitrary actions as that user. The vulnerability, tracked as CVE-2025-12420, carries a CVSS score of 9.3 out of 10.0 "This issue [...] could enable an unauthenticated user to impersonate another user and
Analysis Summary
# Vulnerability: Unauthenticated User Impersonation in ServiceNow AI Platform
## CVE Details
- CVE ID: CVE-2025-12420
- CVSS Score: 9.3 (Critical)
- CWE: Not specified (Implied Access Control issue)
## Affected Systems
- Products: ServiceNow AI Platform components (Now Assist AI Agents, Virtual Agent API)
- Versions:
- Now Assist AI Agents (sn_aia): Versions prior to 5.1.18 or 5.2.19.
- Virtual Agent API (sn_va_as_service): Versions prior to 3.15.2 or 4.0.4.
- Configurations: Affects hosted instances, self-hosted customers, and partners utilizing the specified components.
## Vulnerability Description
A critical security flaw exists within the ServiceNow AI Platform that allows an **unauthenticated user** to successfully impersonate another user. Successful exploitation enables the attacker to perform arbitrary actions with the privileges and entitlements of the targeted, impersonated user.
## Exploitation
- Status: Not exploited in the wild (At the time of reporting/patching). PoC availability is not mentioned, but given the CVSS score and technical details, a functional exploit is highly likely.
- Complexity: Not specified, but enabling unauthenticated impersonation typically suggests a low to medium complexity attack vector for achieving high impact.
- Attack Vector: Network (Implied, as the user is unauthenticated).
## Impact
- Confidentiality: High (Attacker gains access to all data accessible by the impersonated user).
- Integrity: High (Attacker can modify records and perform operations).
- Availability: Potentially High (Depending on the privileges of the impersonated user).
## Remediation
### Patches
ServiceNow addressed the issue on October 30, 2025, by deploying security updates.
- Apply updates to **Now Assist AI Agents (sn_aia)** to version **5.1.18 or later** or **5.2.19 or later**.
- Apply updates to **Virtual Agent API (sn_va_as_service)** to version **3.15.2 or later** or **4.0.4 or later**.
### Workarounds
No specific workarounds were mentioned in the provided text. Immediate application of the vendor patch/update is the primary mitigation strategy provided.
## Detection
- No specific IoCs or detection methods were detailed in the source article. Security teams should monitor authentication logs and session management activities within the ServiceNow AI Platform for anomalous, unauthenticated takeover events correlating with the affected components.
## References
- Vendor Advisory: KB2587329 (URL: support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB2587329)
- CVE Record: cve.org/CVERecord?id=CVE-2025-12420