CVE-2020-27589

🗓️ 06 Nov 2020 14:16:15Reported by [email protected]Type

Synopsys hub-rest-api-python version 0.0.25 - 0.0.52 SSL certificate validation issu

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
RedhatCVE	CVE-2020-27589	22 May 202516:22	–	redhatcve
OSV	CVE-2020-27589	6 Nov 202014:15	–	osv
OSV	GHSA-F248-V4QH-X2R6 Improper Certificate Validation in blackduck	20 Apr 202116:29	–	osv
OSV	PYSEC-2020-26	6 Nov 202014:15	–	osv
Cvelist	CVE-2020-27589	6 Nov 202013:15	–	cvelist
CVE	CVE-2020-27589	6 Nov 202014:15	–	cve
Veracode	Insecure Certificate Validation	20 Apr 202123:44	–	veracode
Prion	Code injection	6 Nov 202014:15	–	prion
Github Security Blog	Improper Certificate Validation in blackduck	20 Apr 202116:29	–	github

Nvd

Node

synopsys hub-rest-api-pythonRange0.0.25–0.0.52

Source	Link
github	www.github.com/blackducksoftware/hub-rest-api-python
pypi	www.pypi.org/project/blackduck/
optiv	www.optiv.com/explore-optiv-insights/source-zero/certificate-validation-disabled-black-duck-api-wrapper
github	www.github.com/blackducksoftware/hub-rest-api-python/pull/113/commits/273b27d0de1004389dd8cf43c40b1197c787e7cd
community	www.community.synopsys.com/s/question/0D52H00005JCZAXSA5/announcement-black-duck-defect-identified

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Nov 2020 14:15Current

7.5High risk

Vulners AI Score7.5

CVSS25

CVSS37.5

EPSS0.00198

CWE-295