CVE-2016-0296

NVD

https://nvd.nist.gov/vuln/detail/CVE-2016-0296

CWE

https://cwe.mitre.org/data/definitions/532.html

IBM Tivoli Endpoint Manager - Mobile Device Management (MDM) stores potentially sensitive information in log files that could be available to a local user.

Weakness

The product writes sensitive information to a log file.

Affected Software

Name	Vendor	Start Version	End Version
Bigfix_platform	Ibm	9.0 (including)	9.0 (including)
Bigfix_platform	Ibm	9.1 (including)	9.1 (including)
Bigfix_platform	Ibm	9.2 (including)	9.2 (including)
Bigfix_platform	Ibm	9.5 (including)	9.5 (including)

Potential Mitigations

https://cwe.mitre.org/data/definitions/215.html

References

http://www.ibm.com/support/docview.wss?uid=swg21993213
http://www.securityfocus.com/bid/94213
http://www.ibm.com/support/docview.wss?uid=swg21993213
http://www.securityfocus.com/bid/94213

Insertion of Sensitive Information into Log File

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References