CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-28421 – CA Unified Infrastructure Management Privilege Escalation
https://notcve.org/view.php?id=CVE-2020-28421
21 Nov 2020 — CA Unified Infrastructure Management 20.1 and earlier contains a vulnerability in the robot (controller) component that allows local attackers to elevate privileges. CA Unified Infrastructure Management versiones 20.1 y anteriores, contienen una vulnerabilidad en el componente robot (controller) que permite a atacantes locales escalar privilegios CA Technologies, A Broadcom Company, is alerting customers to a vulnerability in CA Unified Infrastructure Management. A vulnerability exists that can allow a loca... • http://seclists.org/fulldisclosure/2020/Nov/41 •
CVSS: 10.0EPSS: 80%CPEs: 3EXPL: 2CVE-2020-8010 – CA Unified Infrastructure Management Command Execution
https://notcve.org/view.php?id=CVE-2020-8010
14 Feb 2020 — CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains an improper ACL handling vulnerability in the robot (controller) component. A remote attacker can execute commands, read from, or write to the target system. CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, y 9.20 y posteriores contienen una vulnerabilidad de manejo de ACL inadecuada en el componente robot (controlador). Un atacante remoto puede ejecutar comandos, leer o escribir en el sistema de des... • https://packetstorm.news/files/id/158693 •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0CVE-2020-8011 – CA Unified Infrastructure Management Command Execution
https://notcve.org/view.php?id=CVE-2020-8011
14 Feb 2020 — CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains a null pointer dereference vulnerability in the robot (controller) component. A remote attacker can crash the Controller service. CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x y 9.20 y posteriores contienen una vulnerabilidad de desviación de puntero nulo en el componente robot (controlador). Un atacante remoto puede bloquear el servicio del controlador CA Technologies, A Broadcom Company, is alert... • https://support.broadcom.com/external/content/security-advisories/CA20200205-01-Security-Notice-for-CA-Unified-Infrastructure-Management/7832 • CWE-476: NULL Pointer Dereference •
CVSS: 9.8EPSS: 80%CPEs: 3EXPL: 6CVE-2020-8012 – CA Unified Infrastructure Management Nimsoft 7.80 - Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2020-8012
14 Feb 2020 — CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains a buffer overflow vulnerability in the robot (controller) component. A remote attacker can execute arbitrary code. CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, y 9.20 e inferiores contienen una vulnerabilidad de desbordamiento de búfer en el componente robot (controlador). Un atacante remoto puede ejecutar código arbitrario CA Technologies, A Broadcom Company, is alerting customers to three vulne... • https://packetstorm.news/files/id/156577 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •