Vulnerability in Ibm Tivoli_federated_identity_manager
CVE-2009-5085
IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.2, when configured as an OpenID provider, does not delete the site information cookie in response to a user's deletion of a relying-party trust entry, which allows user-assist…
EPSS: 0.001 (34.1th percentile) — read the EPSS interpretation.
Affected products
- Ibm Tivoli_federated_identity_manager — versions 6.2.0, 6.2.0.1
- N/a — versions n/a
Weakness classification (CWE)
References
- IZ44555 (vendor-advisory, Patch, x_refsource_AIXAPAR)
- cve@mitre.org (x_refsource_CONFIRM)