CVE-2016-9164

HIGH

CA Unified Infrastructure Management <8.4 SP1 - Path Traversal

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in diag.jsp file in CA Unified Infrastructure Management (formerly CA Nimsoft Monitor) 8.4 SP1 and earlier and CA Unified Infrastructure Management Snap (formerly CA Nimsoft Monitor Snap) allows remote attackers to read arbitrary files via unspecified vectors.

References (5)

Core 5

Scores

CVSS v3 7.5
EPSS 0.0539
EPSS Percentile 91.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-22
Status published
Products (1)
ca/unified_infrastructure_management < 8.4
Published Mar 07, 2017
Tracked Since Feb 18, 2026