hero-banner

OpenSSL Vulnerability

Status: Active Last Update: Original Postdate:

Overview

On November 1, 2022, The OpenSSL Foundation released OpenSSL version 3.0.7. This release is a security-fix and addresses two “High” severity vulnerabilities, https://www.openssl.org/news/vulnerabilities.html

Details

Advanced notice was shared by the OpenSSL Foundation last week, alerting the industry of the vulnerabilities and upcoming patch. 

Progress has conducted a thorough review of our products and determined that none of our products are using the impacted version of OpenSSL as shipped and/or deployed.

The following products do not use OpenSSL 3.0.x and are not susceptible.  No further action is required at this time.

  • Chef
  • Corticon
  • DataDirect (Connectors, Hybrid Data Pipeline, Autonomous REST Connector, OpenAccess SDK)
  • iMail
  • IMacros
  • Fiddler/ Fiddler Everywhere
  • Flowmon
  • Kemp360 (Central, Vision)
  • Kemp LoadMaster
  • Kendo UI
  • Kinvey
  • MessageWay
  • MOVEit/ MOVEit Cloud
  • NativeChat
  • OpenEdge
  • Sitefinity (Cloud, Insight, Web Content Management)
  • Telerik (Developer Tools)
  • ThemeBuilder / Unite UX
  • Test Studio
  • WhatsUp Gold
  • WS_FTP

At Progress, security is always a top priority. We do, however, recommend that customers conduct their own due diligence with respect to any third-party components that may be utilized in their environments and take the appropriate actions recommended by those third parties.

For any further questions regarding this message or Progress security practices, please contact security@progress.com and we will quickly address those questions or concerns.

Contact information

Privacy

Questions about Progress’ privacy practices and how we handle your personal data

privacy@progress.com

Copyrights

Use of Progress Software copyrighted materials or notice of copyright infringement

copyrights@progress.com

Trademarks

Questions about or requests to use Progress Software trademarks, logos or branding

trademarks@progress.com

General legal

legal@progress.com

Governance

bod@progress.com

Security

Questions about Security, Privacy, Compliance and Due Diligence

security@progress.com