Unrated severityNVD Advisory· Published Mar 25, 2015· Updated May 6, 2026

CVE-2014-8923

Description

The (1) IBM Tivoli Identity Manager Active Directory adapter before 5.1.24 and (2) IBM Security Identity Manager Active Directory adapter before 6.0.14 for IBM Security Identity Manager on Windows, when certain log and trace levels are configured, store the cleartext administrator password in a log file, which allows local users to obtain sensitive information by reading a file.

Affected products

IBM/Security Identity Manager Active Directory Adapter
cpe:2.3:a:ibm:security_identity_manager_active_directory_adapter:*:*:*:*:*:windows:*:*
Range: <=6.0.14
IBM/Tivoli Identity Manager Active Directory Adapter
cpe:2.3:a:ibm:tivoli_identity_manager_active_directory_adapter:*:*:*:*:*:windows:*:*
Range: <=5.1.20

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000