CVE Catalog

CVE-2026-22675

MediumCVSS 5.4
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.22%

12th percentile - higher than 12% of all known CVEs

Summary

OCS Inventory NG Server version 2.12.3 and prior contain a stored cross-site scripting vulnerability that allows unauthenticated attackers to execute arbitrary JavaScript by submitting malicious User-Agent HTTP headers to the /ocsinventory endpoint. Attackers can register rogue agents or craft requests with malicious User-Agent values that are stored without sanitization and rendered with insufficient encoding in the web console, leading to arbitrary JavaScript execution in the browsers of authenticated users viewing the statistics dashboard.

Risk Assessment

The risk for the organization includes session theft, administrator account takeover, and leakage of sensitive data through malicious script execution in the context of an authenticated user's browser.

Recommendation

It is recommended to immediately upgrade OCS Inventory NG Server to version 2.12.4 or later, which includes a fix for this vulnerability. Until the update is applied, restrict access to the web console and implement User-Agent header filtering at the Web Application Firewall (WAF) level.

Original NVD description (English source)

OCS Inventory NG Server version 2.12.3 and prior contain a stored cross-site scripting vulnerability that allows unauthenticated attackers to execute arbitrary JavaScript by submitting malicious User-Agent HTTP headers to the /ocsinventory endpoint. Attackers can register rogue agents or craft requests with malicious User-Agent values that are stored without sanitization and rendered with insufficient encoding in the web console, leading to arbitrary JavaScript execution in the browsers of authenticated users viewing the statistics dashboard.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS