IBM OPENBMC is a POWER8 and POWER9 emulator from International Business Machines Corporation (Ibm), Inc. A cross-site scripting vulnerability exists in the OP910 version of IBM OPENBMC, which stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit the vulnerability to execute JavaScript code on the client side.