Broadcom Unified Infrastructure Management vulnerabilities

CVE-2025-10847 [HIGH] CWE-284 CVE-2025-10847: DX Unified Infrastructure Management (Nimsoft/UIM) and below contains an improper ACL handling vulne DX Unified Infrastructure Management (Nimsoft/UIM) and below contains an improper ACL handling vulnerability in the robot (controller) component. A remote attacker can execute commands, read from, or write to the target system.

CVE-2020-28421 [HIGH] CVE-2020-28421: CA Unified Infrastructure Management 20.1 and earlier contains a vulnerability in the robot (control CA Unified Infrastructure Management 20.1 and earlier contains a vulnerability in the robot (controller) component that allows local attackers to elevate privileges.

CVE-2020-8010 [CRITICAL] CVE-2020-8010: CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains an impr CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains an improper ACL handling vulnerability in the robot (controller) component. A remote attacker can execute commands, read from, or write to the target system.

CVE-2020-8012 [CRITICAL] CWE-120 CVE-2020-8012: CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains a buffe CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains a buffer overflow vulnerability in the robot (controller) component. A remote attacker can execute arbitrary code.

CVE-2020-8011 [HIGH] CWE-476 CVE-2020-8011: CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains a null CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains a null pointer dereference vulnerability in the robot (controller) component. A remote attacker can crash the Controller service.