4 matches found
CVE-2020-8012
CVE-2020-8012 affects CA Unified Infrastructure Management Nimsoft/NIMsoft robot (controller) component. Connected sources confirm a remote buffer overflow in nimcontroller that allows arbitrary code execution, with exploitation demonstrated by Metasploit module targeting Nimsoft 7.80 (and relate...
CVE-2020-8010
CVE-2020-8010 affects CA Unified Infrastructure Management (Nimsoft/UIM) robot/controller components across 9.20 and earlier, and 20.1/20.3.x. The issue is improper ACL handling, enabling a remote attacker to execute commands and perform read/write on the target system. Public details in the conn...
CVE-2020-8011
The CVE-2020-8011 entry applies to CA Unified Infrastructure Management (Nimsoft/UIM) versions 20.1, 20.3.x, and 9.20 and earlier. The vulnerability is a null pointer dereference in the robot (controller) component, allowing a remote attacker to crash the Controller service. The connected documen...
CVE-2020-28421
CA Unified Infrastructure Management (UIM) versions 20.1 and earlier are affected by CVE-2020-28421 due to a privilege-escalation vulnerability in the robot (controller) component. The issue allows a local attacker to gain elevated privileges, with impact described as privilege escalation in the ...