Are there any vulnerabilities with the Infrastructure Manager in DX UIM 20.4.9 (20.4CU9)?

We know about vulnerabilities for the 2 probes (baseline_engine and prediction Engine).

Are there any other vulnerabilities we should be aware of?

DX UIM 20.4 CU9

Guidance

IM v20.4.9 has no specific reported vulnerabilities but each Infrastructure Manager (IM) version may include security updates.

Note: If you have Infrastructure Manager installed on the UIM Server Primary system, and you upgrade the UIM Server alone, the Infrastructure Manager may not work. So, we recommend to install the Infrastructure Manager (20.4 CU9) after the UIM Server is upgraded.

Please note the following which is very important:

Sign up for Proactive Notifications to receive emails regarding important notifications, updates and release information regarding your Broadcom Software. This includes all security vulnerabilities as well but make sure you select the relevant checkboxes.

You can also check any DX UIM software component here for the latest updates/hotfixes and security vulnerabilities, etc:

DX Unified Infrastructure Management - Cumulative Updates & Patches

Overall, the best practice is to make sure when you finish upgrading to a particular version or cumulative update, you navigate to the http://<primary_hub>/uimhome page and click ‘Installers’ and then run the Infrastructure Manager (IM) installer.

You MUST upgrade the Infrastructure Manager to the current version which is linked/available on the uimhome page. Any other users that access the IM should also upgrade the IM version, e.g., on their desktops/laptops or remote hubs/robot machines if IM is installed there, otherwise the IM may throw a security warning and/or not work as expected or contain any necessary updates for 1 or more security vulnerabilities.