CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

broadcom

unified_infrastructure_management

4 known vulnerabilities · sorted by CVSS score

CVE-2020-8010

CRITICAL9.8

CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains an improper ACL handling vulnerability in the robot (controller) component. A remote attacker can execute commands, read from, or write to the target system.

broadcom / unified_infrastructure_management+2

Network

Published Feb 18, 2020

CVE-2020-8012

CRITICAL9.8

CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains a buffer overflow vulnerability in the robot (controller) component. A remote attacker can execute arbitrary code.

broadcom / unified_infrastructure_management+2

Network

Published Feb 18, 2020

CVE-2020-28421

HIGH7.8

CA Unified Infrastructure Management 20.1 and earlier contains a vulnerability in the robot (controller) component that allows local attackers to elevate privileges.

broadcom / unified_infrastructure_management

Local

Published Nov 23, 2020

CVE-2020-8011

HIGH7.5

CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains a null pointer dereference vulnerability in the robot (controller) component. A remote attacker can crash the Controller service.

broadcom / unified_infrastructure_management+2

Network

Published Feb 18, 2020