Vulnerability Description
OCS Inventory NG Server version 2.12.3 and prior contain a stored cross-site scripting vulnerability that allows unauthenticated attackers to execute arbitrary JavaScript by submitting malicious User-Agent HTTP headers to the /ocsinventory endpoint. Attackers can register rogue agents or craft requests with malicious User-Agent values that are stored without sanitation and rendered with insufficient encoding in the web console, leading to arbitrary JavaScript execution in the browsers of authenticated users viewing the statistics dashboard.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ocsinventory-Ng | Ocs Inventory Server | <= 2.12.3 |
Related Weaknesses (CWE)
References
- https://github.com/OCSInventory-NG/OCSInventory-Server/commit/78faf2ca8b897141baPatch
- https://github.com/OCSInventory-NG/OCSInventory-Server/pull/483Issue Tracking
- https://www.vulncheck.com/advisories/ocs-inventory-ng-server-stored-xss-via-userThird Party AdvisoryVDB Entry
FAQ
What is CVE-2026-22675?
CVE-2026-22675 is a vulnerability with a CVSS score of 5.4 (MEDIUM). OCS Inventory NG Server version 2.12.3 and prior contain a stored cross-site scripting vulnerability that allows unauthenticated attackers to execute arbitrary JavaScript by submitting malicious User-...
How severe is CVE-2026-22675?
CVE-2026-22675 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-22675?
Check the references section above for vendor advisories and patch information. Affected products include: Ocsinventory-Ng Ocs Inventory Server.