- ServiceNow fixes a critical AI Platform flaw (CVE-2025-12420) that allows user impersonation
- “BodySnatcher” scored 9.3/10 and affected multiple versions of the app
- Exploitation has not yet been seen; Experts warn that unpatched systems are still at risk after repair.
ServiceNow, one of the most popular cloud platforms for automating business and IT workflows, said it recently patched a critical severity vulnerability that allowed threat actors to impersonate other users and perform arbitrary actions in their place.
The company revealed that the SaaS security team AppOmni notified it of a critical privilege escalation vulnerability within its AI platform in October 2025. Following an investigation, the company began tracking the bug as CVE-2025-12420 and gave it a severity score of 9.3/10 (critical).
“This problem […] could allow an unauthenticated user to impersonate another user and perform operations that the impersonated user has the right to perform,” the advisory reads. “On October 30, 2025, ServiceNow addressed this vulnerability by deploying a relevant security update to most hosted instances,” it further stated. “Security updates were also provided to ServiceNow partners and self-hosted customers. Additionally, the vulnerability is fixed in the listed versions of the Store app.”
Biggest mistake ever?
Patches were released for these versions:
Now Help AI Agents (sn_aia): 5.1.18 or later and 5.2.19 or later
Virtual Agent API (sn_va_as_service): 3.15.2 or later and 4.0.4 or later
So far, there is no evidence that this vulnerability is being abused in the wild. However, it is not unusual for a bug to start being exploited only after a fix is released. Many cybercriminals do not have the knowledge or resources to search for zero days and instead simply rely on the fact that many companies do not patch their software in time.
AppOmni, which discovered the flaw, named it “BodySnatcher.”
“BodySnatcher is the most serious AI-driven vulnerability discovered to date: attackers could have effectively ‘remote-controlled’ an organization’s AI, weaponizing the very tools intended to simplify the business,” said one researcher. Hacker News.
Through Hacker News
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds. Be sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp also.
