Hello,
I had some technical questions for a project I’m working on. Is LocalWP vulnerable to OpenSSL 3.0? And has the organization done a risk assessment of the impact of OpenSSL 3.0. Thank you for taking the time to read this.
Thanks,
Pablo
Hi Pablo,
Yes, our organization has done a risk assessment on the OpenSSL 3.0 vulnerability. Due to the version of Node.js that Local is running, Local nor its users were not exposed as a result of this issue.
Local is owned and maintained by WP Engine, a hosting provider. The WP Engine team reviewed the hosting platform and also found no vulnerabilities, issuing this statement:
“WP Engine Security has reviewed the OpenSSL vulnerabilities announced on 11/01/2022 and has confirmed with Engineering that none of our systems are affected.”
Thanks for asking!
-Austin
This topic was automatically closed 36 hours after the last reply. New replies are no longer allowed.