Unrated severityNVD Advisory· Published Oct 3, 2015· Updated Jun 17, 2026
CVE-2014-8916
CVE-2014-8916
Description
Cross-site scripting (XSS) vulnerability in IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2015-0144.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:ibm:openpages_grc_platform:6.2.0.0:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:ibm:openpages_grc_platform:6.2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:openpages_grc_platform:6.2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:openpages_grc_platform:6.2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:openpages_grc_platform:7.0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:openpages_grc_platform:7.1.0.0:*:*:*:*:*:*:*
- (no CPE)range: 6.2 before IF7; 6.2.1 before 6.2.1.1 IF5; 7.0 before FP4; 7.1 before FP1
Patches
Vulnerability mechanics
References
1- www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.