CVE-2022-38172 Information

Description

ServiceNow through San Diego Patch 3 allows XSS via the name field during creation of a new dashboard for the Performance Analytics dashboard.

Reference

https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB1122640