CVE-2011-4024
EPSS 10.9%
Description
Cross-site scripting (XSS) vulnerability in ocsinventory in OCS Inventory NG 2.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
How to fix CVE-2011-4024
To remediate CVE-2011-4024, upgrade the affected package to a fixed version below.
- Debian/ocsinventory-server—upgrade to 2.0.2-1 or later
Is CVE-2011-4024 being exploited?
Moderate — EPSS is 10.9%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 2.0.2-1