Previous releases of PRPC(below 7.1.7 verison) were found to include OpenSSL files that were vulnerable to the “Heartbleed”.

Discussion

Replies

106

Views

ShanmugaR2986

Member since 2015

3 posts

United Healthcare

Posted: 5 years ago

Last activity: 5 years 2 months ago

Closed

Previous releases of PRPC(below 7.1.7 verison) were found to include OpenSSL files that were vulnerable to the “Heartbleed”.

Previous releases of PRPC(below 7.1.7 verison) were found to include OpenSSL files that were vulnerable to the “Heartbleed” exploit. Does 7.1.8 version install includes OpenSSL files, also

Security

Posted: 5 years ago

David+Kircheis

PEGA

replied to ShanmugaR2986

In the Pega 7.1.8 release we provide more options to control the versions of SSL/TLS that you use in your applications. While we still do support older protocol versions that have known vulnerabilities, we proactively warn the application developer against their use and provide alternatives.

Pega continuosly evaluates our products for known and potential threats. Currently we are not aware of any SSL related vulnerabilities in Pega 7.1.8.

Do you have more details about what you found in Pega 7.1.7 that you can share?

Explore upcoming sessions

Personalized tools to propel your success

Contact a moderator

Discussion

Previous releases of PRPC(below 7.1.7 verison) were found to include OpenSSL files that were vulnerable to the “Heartbleed”.

About Pegasystems

Explore upcoming sessions

Personalized tools to propel your success

Contact a moderator

Related content:

Discussion

Previous releases of PRPC(below 7.1.7 verison) were found to include OpenSSL files that were vulnerable to the “Heartbleed”.

About Pegasystems

We'd prefer it if you saw us at our best.