Skip to main content
Contact a Moderator

Discussion

1
Replies
111
Views
 Shanmuga Rajan (ShanmugaR2986) United Healthcare
United Healthcare
IN
ShanmugaR2986 Member since 2015 3 posts
United Healthcare
Posted: August 19, 2015
Last activity: August 20, 2015
Posted: 19 Aug 2015 8:42 EDT
Last activity: 20 Aug 2015 14:05 EDT
Closed

Previous releases of PRPC(below 7.1.7 verison) were found to include OpenSSL files that were vulnerable to the “Heartbleed”.

Previous releases of PRPC(below 7.1.7 verison) were found to include OpenSSL files that were vulnerable to the “Heartbleed” exploit.  Does 7.1.8 version install includes OpenSSL files, also

Security
Moderation Team has archived post, This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Discussion, please write a new Discussion.
Posted: 6 years ago
Posted: 20 Aug 2015 14:05 EDT
David Kircheis (David+Kircheis) PEGA Product Manager - Cloud
Pegasystems Inc.
US

In the Pega 7.1.8 release we provide more options to control the versions of SSL/TLS that you use in your applications. While we still do support older protocol versions that have known vulnerabilities, we proactively warn the application developer against their use and provide alternatives.

Pega continuosly evaluates our products for known and potential threats. Currently we are not aware of any SSL related vulnerabilities in Pega 7.1.8.

Do you have more details about what you found in Pega 7.1.7 that you can share?

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice