You are here

OpenSSL Vulnerability fixed in version 1.1.0e

Affects product: 
Airlock WAF
IDs: 
CVE-2017-3733
Keywords: 
OpenSSL
Description: 

OpenSSL released version 1.1.0e fixing CVE-2017-3733.

Airlock WAF is not affected.

Details:
The vulnerability can cause OpenSSL to crash. The vulnerable version 1.1.0 is not used by Airlock WAF. OpenSSL 1.0.2 which is used by Airlock WAF 6.0 and 6.1 is not affected. According to our analysis the older OpenSSL version 1.0.1 which is used by Airlock WAF 5.3.1 is not affected as well.

Resolution: 

no action required.

Component: 
Airlock
Airlock Vulnerability Status: 
Does not affect Airlock
Back-end Vulnerability Status: 
Does not affect back-end behind Airlock