Known Vulnerabilities for products from Synopsys

Listed below are 7 of the newest known vulnerabilities associated with the vendor "Synopsys".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2024-0226 json 5.4 - MEDIUM 2024-01-09 2024-01-12
CVE-2023-23849 json Versions of Coverity Connect prior to 2022.12.0 are vulnerable to an unauthenticated Cross-Site Scripting vulnerability. Any ... 6.1 - MEDIUM 2023-02-06 2023-02-14
CVE-2023-2158 json Code Dx versions prior to 2023.4.2 are vulnerable to user impersonation attack where a malicious actor is able to gain access... 9.8 - CRITICAL 2023-04-27 2023-05-09
CVE-2023-1663 json Coverity versions prior to 2023.3.2 are vulnerable to forced browsing, which exposes authenticated resources to unauthorized ... 5.3 - MEDIUM 2023-03-29 2023-11-07
CVE-2022-30278 json A vulnerability in Black Duck Hub’s embedded MadCap Flare documentation files could allow an unauthenticated remote attacke... 6.1 - MEDIUM 2022-05-10 2022-05-18
CVE-2020-27589 json Synopsys hub-rest-api-python (aka blackduck on PyPI) version 0.0.25 - 0.0.52 does not validate SSL certificates in certain ca... 7.5 - HIGH 2020-11-06 2020-11-20
CVE-2019-3800 json CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the use... 7.8 - HIGH 2019-08-05 2019-10-09

Known software with vulnerabilities from Synopsys

Type Vendor Product Version
ApplicationSynopsysHub-rest-api-python0.0.10
ApplicationSynopsysSeeker Iast Service Broker-