A vulnerability scan found that the machine that has the IM fat client installed on it shows that the msxml4 vulnerability is present.

Release: DX UIM 20.4*/ 23.4*
Component: IM fat client (Infrastructure Manager) versions prior to 20.4.8

Versions of Infrastructure Manager prior to 20.4.8 will install:

msxml4.dll
msxml4r.dll

into the C:\Windows\SysWOW64 directory, if they are not already present. 

Upgrading to version 20.4.8 of the Infrastructure Manager will remove the reliance on these dll files.

Note: The upgrade/fresh install will not remove these files, if they are present.

And, If running DX UIM 23.4. and IM > 20.4.8, and the files are still there, the files needs to be removed manually as they are no longer needed for IM to run.