CVE-2026-22675

MEDIUM 5.4

OCS Inventory NG Server Stored XSS via User-Agent

CVSS Score

5.4

EPSS Score

0.1%

EPSS Percentile

20th

OCS Inventory NG Server version 2.12.3 and prior contain a stored cross-site scripting vulnerability that allows unauthenticated attackers to execute arbitrary JavaScript by submitting malicious User-Agent HTTP headers to the /ocsinventory endpoint. Attackers can register rogue agents or craft requests with malicious User-Agent values that are stored without sanitation and rendered with insufficient encoding in the web console, leading to arbitrary JavaScript execution in the browsers of authenticated users viewing the statistics dashboard.

CWE	CWE-79
Vendor	ocs inventory
Product	ocs inventory ng server
Published	Apr 6, 2026
Last Updated	Apr 7, 2026

Stay Ahead of the Next One

Get instant alerts for ocs inventory ocs inventory ng server

Be the first to know when new medium vulnerabilities affecting ocs inventory ocs inventory ng server are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

None

Affected Versions

OCS Inventory / OCS Inventory NG Server

0 ≤ 2.12.3

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/OCSInventory-NG/OCSInventory-Server/pull/483 github.com: https://github.com/OCSInventory-NG/OCSInventory-Server/commit/78faf2ca8b897141ba4d337d75692ab8e405bd4e vulncheck.com: https://www.vulncheck.com/advisories/ocs-inventory-ng-server-stored-xss-via-user-agent

Credits

Alexandre Nesic (@_atsika) at Quarkslab