CVE-2020-27589

on pypi

blackducksoftware/hub-rest-api-python

on github

Published

November 6, 2020

Severity

CVSS v3:

7.5 HIGH

CVSS v2:

5 MEDIUM

Description

Synopsys hub-rest-api-python (aka blackduck on PyPI) version 0.0.25 - 0.0.52 does not validate SSL certificates in certain cases.

References

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:synopsys:hub-rest-api-python::::::::	0.0.25 (including)	0.0.52 (including)	*

External Links

NVD - CVE-2020-27589