IBM Tivoli Key Lifecycle Manager (TKLM) is a set of key lifecycle management software from IBM Corporation in the United States. The software provides key storage, key maintenance, and key lifecycle management for storage devices.IBM Tivoli Key Lifecycle Manager has a security vulnerability that could be exploited by an attacker to allow a user to embed arbitrary JavaScript code in the Web UI to change the intended functionality, resulting in credential disclosure in a trusted session.