Factorfx

factorfx

2 CVEs • 2 products

Products (2)

Click to collapse

Toggle

Open Computer Software Inventory Next Generation

open_computer_software_inventory_next_generation

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-46355 1Factorfx 1Ocs Inventory Nov 21, 2024 Feb 11, 2022 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 OCS Inventory 2.9.1 is affected by Cross Site Scripting (XSS). To exploit the vulnerability, the attacker needs to manipulate the name of some device on your computer, such as a printer, replacing the device name with so...Show more OCS Inventory 2.9.1 is affected by Cross Site Scripting (XSS). To exploit the vulnerability, the attacker needs to manipulate the name of some device on your computer, such as a printer, replacing the device name with some malicious code that allows the execution of Stored Cross-site Scripting (XSS).Show less
CVE-2020-14947 1Factorfx 1Open Computer Software Inventory Next Generation Nov 21, 2024 Jun 30, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mib_file in plugins/main_sections/ms_config/ms_snmp_config.php is mishandled in get_mib_oid.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2021-46355

1Factorfx

1Ocs Inventory

Nov 21, 2024

Feb 11, 2022

N/A· v4

5.4 MEDIUM· v3

3.5 LOW· v2

OCS Inventory 2.9.1 is affected by Cross Site Scripting (XSS). To exploit the vulnerability, the attacker needs to manipulate the name of some device on your computer, such as a printer, replacing the device name with so...Show more

CVE-2020-14947

1Factorfx

1Open Computer Software Inventory Next Generation

Nov 21, 2024

Jun 30, 2020

N/A· v4

8.8 HIGH· v3

6.5 MEDIUM· v2

OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mib_file in plugins/main_sections/ms_config/ms_snmp_config.php is mishandled in get_mib_oid.