Known issues

The following is a list of new known issues and limitations in Black Duck SCA 2025.4.2:

• Users may experience discrepancies in vulnerability computations and updates for archived project versions. This inconsistency arises from the way archived versions are managed within the system. We are aware of this issue and are working towards a more consistent approach to handling archived project versions in future updates.

• Black Duck may occasionally encounter discrepancies in vulnerability status and counts when managing unscored vulnerabilities. These issues arise when unscored vulnerabilities retrieved from the Knowledge Base (KB) are not consistently excluded. If these vulnerabilities are later updated in the KB—for example, receiving a score or being linked to a BDSA record— Black Duck may not process the updates correctly. We are actively working to improve the handling of updates for unscored vulnerabilities to ensure greater consistency in future releases.