Vulnerabilities > CA > Unified Infrastructure Management Snap > High

DATE	CVE	VULNERABILITY TITLE	RISK
2017-03-20	CVE-2016-9165	Information Exposure vulnerability in CA products The get_sessions servlet in CA Unified Infrastructure Management (formerly CA Nimsoft Monitor) before 8.5 and CA Unified Infrastructure Management Snap (formerly CA Nimsoft Monitor Snap) allows remote attackers to obtain active session ids and consequently bypass authentication or gain privileges via unspecified vectors. network low complexity ca CWE-200	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.