I’m looking for information on whether your organization is aware of the OpenSSL 3.0 vulnerabilities disclosed earlier this month, summarized in CVE-2022-3602 and CVE-2022-3786. If so, have you investigated whether any of your internal systems are vulnerable and have you mitigated those vulnerabilities if they exist?
Thank you!
Best answer by John
View original
+2
OpenSSL Security Advisory (CVE-2022-3786 and CVE-2022-3602)
Docebo is not affected by the reported vulnerabilities in our product since the affected versions of the software are not used in any part of the product infrastructure.
Awesome, thanks John!
+2
You are most welcome!
Enter your email address or username and password below to log in to Docebo Community. No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.