CVE-2020-8010

CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains an improper ACL handling vulnerability in the robot (controller) component. A remote attacker can execute commands, read from, or write to the target system.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:broadcom:unified_infrastructure_management:*:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:unified_infrastructure_management:*:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:unified_infrastructure_management:20.1:*:*:*:*:*:*:*

History

29 Apr 2022, 15:57

Type Values Removed Values Added
CPE cpe:2.3:a:broadcom:unified_infrastructure_management:20.1:*:*:*:*:*:*:*
CWE CWE-200 NVD-CWE-Other
References (MISC) http://packetstormsecurity.com/files/158693/CA-Unified-Infrastructure-Management-Nimsoft-7.80-Buffer-Overflow.html - (MISC) http://packetstormsecurity.com/files/158693/CA-Unified-Infrastructure-Management-Nimsoft-7.80-Buffer-Overflow.html - Exploit, Third Party Advisory, VDB Entry
References (MISC) https://support.broadcom.com/external/content/security-advisories/CA20200205-01-Security-Notice-for-CA-Unified-Infrastructure-Management/7832 - (MISC) https://support.broadcom.com/external/content/security-advisories/CA20200205-01-Security-Notice-for-CA-Unified-Infrastructure-Management/7832 - Vendor Advisory

27 Sep 2021, 14:15

Type Values Removed Values Added
CWE CWE-20 CWE-200
Summary CA Unified Infrastructure Management (Nimsoft/UIM) 9.20 and below contains an improper ACL handling vulnerability in the robot (controller) component. A remote attacker can execute commands, read from, or write to the target system. CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains an improper ACL handling vulnerability in the robot (controller) component. A remote attacker can execute commands, read from, or write to the target system.
References
  • (MISC) https://support.broadcom.com/external/content/security-advisories/CA20200205-01-Security-Notice-for-CA-Unified-Infrastructure-Management/7832 -

Information

Published : 2020-02-18 04:15

Updated : 2023-12-10 13:13


NVD link : CVE-2020-8010

Mitre link : CVE-2020-8010

CVE.ORG link : CVE-2020-8010


JSON object : View

Products Affected

broadcom

  • unified_infrastructure_management