The U.S. Cybersecurity & Infrastructure Security Agency (CISA) said the Synapsys microbiology informatics software platform has an access vulnerability due to an inadequate session expiration mechanism. Becton, Dickinson & Co. (BD), the publisher of the Synapsys system, said three versions of the software are vulnerable, but this vulnerability can be exploited only by those with direct access to the workstations, making this a lower risk than some other recently reported vulnerabilities.