Ibm · Ibm Power Hmc · CVE-2014-0883
**Name of the Vulnerable Software and Affected Versions**
IBM Power HMC versions 7.1.0 through 7.8.0
**Description**
The issue allows users to embed arbitrary JavaScript code in the Web UI, altering the intended functionality and potentially leading to credentials disclosure within a trusted session.
**Recommendations**
For IBM Power HMC versions 7.1.0 through 7.8.0, update to a version that is not affected by this issue to prevent cross-site scripting attacks.