OpenSSL CVE-2022-3786 and CVE-2022-3602 impact

Advertisement

Advertisement

martin
Site Admin
martin avatar
Joined:
Posts:
41,253
Location:
Prague, Czechia

Re: OpenSSL CVE-2022-3786 and CVE-2022-3602 impact

Yes, the current version of WinSCP is based on OpenSSL 1.1.1. No version of WinSCP ever used OpenSSL 3.0.

So, no version of WinSCP is vulnerable to CVE-2022-3786 or CVE-2022-3602.

Reply with quote

Advertisement

You can post new topics in this forum