CVE-2020-27589
Improper Certificate Validation in pypi/blackduck
Identifiers
CVE-2020-27589
Package Slug
pypi/blackduck
Vulnerability
Improper Certificate Validation
Description
Synopsys hub-rest-api-python (aka blackduck on PyPI) - does not validate SSL certificates in certain cases.
Affected Versions
All versions starting from 0.0.25 up to 0.0.52
Solution
Upgrade to version 0.0.53 or above.
Last Modified
2020-11-24
| source |