CVE-2020-8011

Name of the Vulnerable Software and Affected Versions CA Unified Infrastructure Management (Nimsoft/UIM) versions 9.20 and below CA Unified Infrastructure Management (Nimsoft/UIM) version 20.1 CA Unified Infrastructure Management (Nimsoft/UIM) versions 20.3.x

Description The issue is a null pointer dereference vulnerability in the robot (controller) component. A remote attacker can exploit this to crash the Controller service.

Recommendations For CA Unified Infrastructure Management (Nimsoft/UIM) versions 9.20 and below, update to a version above 9.20 to resolve the issue. For CA Unified Infrastructure Management (Nimsoft/UIM) version 20.1, update to a version other than 20.1 to resolve the issue. For CA Unified Infrastructure Management (Nimsoft/UIM) versions 20.3.x, update to a version outside of the 20.3.x range to resolve the issue.