← back
CVE-2020-8010

CVE-2020-8010

EPSS 48.7%
Vexday Risk Score
30Low
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 48.7%KEV nãoPoC Nuclei Metasploit simPatch
Lifecycle
05 Feb 2020Metasploit module available
18 Feb 2020Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains an improper ACL handling vulnerability in the robot (controller) component. A remote attacker can execute commands, read from, or write to the target system.