CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains a null pointer dereference vulnerability in the robot (controller) component. A remote attacker can crash the Controller service.
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Unified_infrastructure_management | Broadcom | * | 9.20 (including) |
Unified_infrastructure_management | Broadcom | 20.3.0 (including) | 20.4.0 (excluding) |
Unified_infrastructure_management | Broadcom | 20.1 (including) | 20.1 (including) |