Is Ghost Solution Suite affected by OpenSSL vulnerability CVE-2022-3786 and CVE-2022-3602?
search cancel

Is Ghost Solution Suite affected by OpenSSL vulnerability CVE-2022-3786 and CVE-2022-3602?

book

Article ID: 254928

calendar_today

Updated On:

Products

Ghost Solution Suite

Issue/Introduction

OpenSSL announced that they are releasing a fix in 3.0.7 to address vulnerabilities CVE-2022-3786 and CVE-2022-3602.

Is the Ghost Solution Suite (GSS) affected?

Environment

Ghost Solution Suite 3.3 RUx

Resolution

There is no impact on any GSS release because publicly available Ghost versions do not use OpenSSL 3.0.x.

Additional Information

OpenSSL Security Advisory [01 November 2022]
https://www.openssl.org/news/secadv/20221101.txt

CVE-2022-3602
https://nvd.nist.gov/vuln/detail/CVE-2022-3602

CVE-2022-3786
https://nvd.nist.gov/vuln/detail/CVE-2022-3786

Symantec Security Advisory for OpenSSL CVE-2022-3786 | CVE-2022-3602
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/21016

Powered by Wolken Software