xlsm attachment is showing as Potential security risks in servicenow attachment

chandan1994
Tera Contributor

‎09-25-2024 03:11 AM

the attachment is showing as potential risk for xlxm file type
 chandan1994_0-1727259037741.png

 

 

Capture.PNG

0 Helpfuls
  • 641 Views
3 REPLIES 3

Brian Lancaster
Tera Sage

‎09-25-2024 07:35 AM

Makes complete sense. xlxm is the extension used when macros are enabled in excel. Macros are know as being used for malicious intent.

0 Helpfuls

Marc Mouries
ServiceNow Employee
ServiceNow Employee

‎09-25-2024 07:59 AM

That's expected as some files can contain macros. It's a good practice to restricts users from uploading some of these files. You can do so by configuring the system property:  glide.attachment.extensions.

Or navigate to All > System Properties > Security.

 

0 Helpfuls

Kartik Swaroop
Tera Contributor
In response to Marc Mouries

‎09-25-2024 06:56 PM

Hello,

I am facing some strange issue with .xlsm file type.

I am filling out a form on portal and from attachment clip I added one xlsm type file.
I submitted the request, but that file is not visible on RITM, 
When I checked sys_attachment table, attachment is showing under sp_portal table.
 do you know what might be the reason ?

Preview file
7 KB
0 Helpfuls