robot_update_9.30_HF4 Release Date: 5th Oct 2020 Applicable for: UIM 9.30 DE476646 : 32203643 - Support case 32203643 - Potential Zero-Day Vulnerability with UIM Robots on Windows Reason: If robot is installed an alternate folder other than %SystemDrive%\Program Files,Nimsoft folder is taking ACL from its parent folder which may be non secure. So normal user can get write privilege and security of the nimsoft folder is breached. Resolution: Controller when starts it sets the folder ACL to read and execute for normal user.Nimsoft folder doesn't inherent ACLS from parent folder. Controller applies %SystemDrive%\Program Files ACL by default to Nimsoft folder. Previous fixes rolled-up: DE460223 : 31905846 - Spooler is honouring the policy precedence DE467868 : 32068693 - Robot does not execute all application discovery scripts DE466404 : 32044603 - Robot crashes and is unresponsive, requires manual restart DE453424 : 31819927 Remote profiles not getting deployed by MCS DE443113 : 20144688 - ToT Alarms from MCS Enhanced profiles are randomly clearing and re-firing DE447800 : 20310110,31888790 - hub is stopping forcing robot to switch and robots not switch back to hub DE443140 : 20122758,20197812 - Configurable parameter for robot loopback address DE449075 : 20309641 - Problem configuring passive robot on the NAT'ed network DE439168 : 20093893 - [PDS] nimalarm doesn't work with option -c since 9.2 on Linux anymore DE451990 : 31784899 - frequent alarms "Unable to communicate with probe 'processes'. Restarting probe" DE427085 : 20037327 - Problem closing e2e_appmon.rob on Window 10 PCs - HF12 Dependencies: DE453424 : 31819927 Remote profiles not getting deployed by MCS: Below builds must be deployed on primary hub so that the alarm policy functionality work properly. 1. mon_config_service_20.10_HF3 And below builds must be deployed where wasp is running: 1. policy_management_ws_0.23_HF1 2. ump_usm_20.1_HF2 Steps to apply the patch: 1. Import the zip into the local archive. 2. Deploy the imported package to the robot/hub. Related patches: robot_update_secure_9.30_SHF4