OpenSSL3.0

Hello,

I had some technical questions for a project I’m working on. Is LocalWP vulnerable to OpenSSL 3.0? And has the organization done a risk assessment of the impact of OpenSSL 3.0. Thank you for taking the time to read this.

Thanks,
Pablo

Hi Pablo,

Yes, our organization has done a risk assessment on the OpenSSL 3.0 vulnerability. Due to the version of Node.js that Local is running, Local nor its users were not exposed as a result of this issue.

Local is owned and maintained by WP Engine, a hosting provider. The WP Engine team reviewed the hosting platform and also found no vulnerabilities, issuing this statement:

“WP Engine Security has reviewed the OpenSSL vulnerabilities announced on 11/01/2022 and has confirmed with Engineering that none of our systems are affected.”

Thanks for asking!
-Austin

This topic was automatically closed 36 hours after the last reply. New replies are no longer allowed.