OpenSSL security advisory CVE-2017-3733


The securiy advisory CVE-2017-3733 describes a security issue for OpenSSL.

It was found that changing the ciphersuite during a renegotiation of the Encrypt-Then-Mac extension could result in a crash of the OpenSSL server or client.

Find out more about CVE-2017-3733 from the MITRE CVE dictionary dictionary and NIST NVD.

Cumulocity has checked their production and support environments and also evaluated the situation for their customer environments.

All these environments are using a different version of openSSL and are not impacted by the weakness.



Have more questions? Submit a request