An unsafe deserialization vulnerability exists in CA Release Automation (Nolio) 6.6 with the DataManagement component that can allow a remote attacker to execute arbitrary code.
https://seclists.org/bugtraq/2019/Dec/16
http://seclists.org/fulldisclosure/2019/Dec/16
http://packetstormsecurity.com/files/155631/CA-Nolio-6.6-Arbitrary-Code-Execution.html