CVE-2009-5084

CVE-2009-5084 · LOW Severity

AV:L/AC:M/AU:N/C:P/I:N/A:N

IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.2, when com.tivoli.am.fim.infocard.delegates.InfoCardSTSDelegate tracing is enabled, creates a cleartext log entry containing a password, which might allow local users to obtain sensitive information by reading the log data.

Learn more about our User Device Pen Test.